實現接口 `IProfileService`

    /// <summary>
    /// 通過此實現可以拓展相關的用戶Profile信息
    /// </summary>
    public class PerryProfileService : IProfileService
    {
        public async Task GetProfileDataAsync(ProfileDataRequestContext context)
        {
            await Task.CompletedTask;
        }

        public async Task IsActiveAsync(IsActiveContext context)
        {
            await Task.CompletedTask;
        }
    }

實現接口 `IResourceOwnerPasswordValidator`

    /// <summary>
    /// 通過此實現可以在返回token前自定義校驗用戶賬號和密碼
    /// 這里注入了自己實現的ApplicationUserService
    /// </summary>
    public class PerryResourceOwnerPasswordValidator : IResourceOwnerPasswordValidator
    {
        public IApplicationUserService UserService { get; }
        public PerryResourceOwnerPasswordValidator(IApplicationUserService userService)
        {
            UserService = userService;
        }

        public async Task ValidateAsync(ResourceOwnerPasswordValidationContext context)
        {
            var validateResult = await UserService.ValidateCredentialsAsync(context.UserName, context.Password);

            if (validateResult.Result)
            {
                var user = await UserService.GetByUserNameAsync(context.UserName);
                context.Result = new GrantValidationResult(
                    subject:user.Id,
                    authenticationMethod:"",
                    claims: new List<Claim>()
                    );
            }
        }
    }

將上述實現類替換到IdentityServer

Startup.cs/ConfigureServices里配置注入信息

            services.AddTransient<IResourceOwnerPasswordValidator, PerryResourceOwnerPasswordValidator>();
            services.AddTransient<IProfileService, PerryProfileService>();

使用自己實現的類

           var builder = services.AddIdentityServer()
                // 其他配置
                // 。。。
                // 其他配置
                .AddResourceOwnerValidator<PerryResourceOwnerPasswordValidator>()
                .AddProfileService<PerryProfileService>();

經過上述操作后，訪問 https://localhost:5001/connect/token 即可進入到自己的校驗並返回有效的Token

獲取Token測試

{
    "access_token": "eyJhbGciOiJSUzI1NiIsImtpZCI6IkFDMjg3MjVCOTRCOTU4MDI1RDdEOUUwNjNCNjVGN0NFIiwidHlwIjoiYXQrand0In0.eyJuYmYiOjE2MzI1NTEyMTgsImV4cCI6MTYzMjU1NDgxOCwiaXNzIjoiaHR0cHM6Ly9sb2NhbGhvc3Q6NTAwMSIsImF1ZCI6Imh0dHBzOi8vbG9jYWxob3N0OjUwMDEvcmVzb3VyY2VzIiwiY2xpZW50X2lkIjoid2ViIiwic3ViIjoiYTg4ZDUxY2ItMGU4MC00MTAwLThmYjgtMTM2MzI0ODRjYTE4IiwiYXV0aF90aW1lIjoxNjMyNTUxMjE4LCJpZHAiOiJsb2NhbCIsImp0aSI6Ijk5MjM4QjIyMTA0NDNFMUU3Njc0RjdGRDVFNTI1Q0I5IiwiaWF0IjoxNjMyNTUxMjE4LCJzY29wZSI6WyJvcGVuaWQiLCJwcm9maWxlIiwib2ZmbGluZV9hY2Nlc3MiXSwiYW1yIjpbIiJdfQ.hssfoHyF8zZsdgDqzDzcx4fYaEl2q6FETdA9UWxUgxuFrZhSqq6hJU5ENnWFIBmdcQfZMVgwULX4bGoyymT5glljH1I7bdIGQpTuUYEC8BHyxCjL4yrFziPTQ5pnPCk0BdeOL0KsIdoaQUDUh4wS_AGNdwT9svKw6ae3TgciHfY2XTTZRXxEvbZBCV1KwVFgO2S040_2F7D68ZRAkF0Y2Xz27iihXcnVNQ2_j8kRqfgEbLuQ2HArJiC6FUOHRLnu8EvwGS4P6ckaVbiiKREduB_B_qq5LVz2SB0L4Y7dsCNdLUvTtoE0Onm5i5fAOkp46DflXCYhzn50hX6y4JAyzw",
    "expires_in": 3600,
    "token_type": "Bearer",
    "refresh_token": "0B27364E6504FB451DD4287D1F1B21BF12DC0FF70AC4E93267F2AB57AD7660F2",
    "scope": "offline_access openid profile"
}

校驗Token測試：沒有Token
校驗Token測試：使用上方得到的Token

免責聲明！

本站轉載的文章為個人學習借鑒使用，本站對版權不負任何法律責任。如果侵犯了您的隱私權益，請聯系本站郵箱yoyou2525@163.com刪除。

猜您在找 identityserver4 自定義驗證 IdentityServer4 自定義授權模式 IdentityServer4實戰：自定義用戶名和密碼校驗 IdentityServer4客戶端如何獲取自定義聲明，了解一下？ IdentityServer4 QuickStart 授權與自定義Claims IdentityServer4 實現自定義 GrantType 授權模式 IdentityServer4之Token令牌獲取流程分析 Asp.Net Core 中IdentityServer4 授權中心之自定義授權模式 SpringBoot自定義注解示例分析——實現Token校驗 IdentityServer4客戶端獲取Token的方法

【IdentityServer4】自定義校驗獲取Token+測試

實現接口 IProfileService

實現接口 IResourceOwnerPasswordValidator

將上述實現類替換到IdentityServer

經過上述操作后，訪問 https://localhost:5001/connect/token 即可進入到自己的校驗並返回有效的Token

免責聲明！

實現接口 `IProfileService`

實現接口 `IResourceOwnerPasswordValidator`