客户端 - 服务器身份验证 - 使用SSPI?

我工作的一个客户端 - 服务器应用程序,我希望客户端验证自身使用用户的登录凭据的服务器上,但我不希望用户必须输入他们的用户名和密码。我当然不希望负责安全处理密码。我只需要用户向我证明他们是他们说他们是谁,然后我的服务器可以继续授予/拒绝命令,因为它为所欲为。

I'm working on a client-server application and I want the client to authenticate itself to the server using the user's logon credentials, but I don't want the user to have to type in their user name and password. I certainly don't want to be responsible for securely handling passwords. I only need the user to prove to me that they are who they say they are, and then my server can go ahead and grant/deny commands as it pleases.

我的用户是域的一部分,所以我希望能够使用,当他们登录他们创建的登录凭据。

My users are part of a domain, and so I want to be able to use the logon credentials they created when they logged in.

我不使用任何形式的网络服务,我也不想要。我同时控制客户端和服务器软件,无一不是用纯C#和用好醇'插座完成工作。

I'm not using any sort of web services, nor do I want to. I control both the client and server software, and both are written in pure C# and use good ol' sockets for getting work done.

我宁愿用纯C#/做到这一点。净,但我愿意使用不安全的C#和pinvokes到Win32 API,如果这意味着我会完成这项工作。

I'd prefer to do this with pure C#/.Net, but I'm open to using unsafe C# and pinvokes to win32 API if it means that I'll get the job done.

我读过的窗户约SSPI一点点,但我在黑暗中那种感觉,因为周围的这种应用程序的开发是新的我。

I've read a little bit about SSPI in windows, but I'm kind of feeling around in the dark since this sort of application development is new to me.

是否有人知道如何做到这一点?是SSPI的方式?一个人怎么使用SSPI从C#中? ?有没有一个.net原生方式,使我的代码可以保持便携

Does anybody know how to do this? Is SSPI the way? How does one use SSPI from within C#? Is there a .Net-native way so that my code can remain portable?



 1 条回答