您的位置: 首页  >  技术问答  >  如何将令牌保存在cookie中

如何将令牌保存在cookie中

分类: 技术问答 2022-05-23 09:50:28
问题描述:


我正在创建Web服务身份验证.当用户使用用户名和密码登录时. Web服务器将令牌提供给客户端,以使用该令牌请求Web服务.我想使用cookie保存令牌,以便让Web服务验证客户端的令牌是否正确.
以下是我的代码.如果可以的话,请给我示例代码.

Hi,
I am creating the web service authentication. When the user login with user name and password. Web server will give the token to the client to request the web service with that token. I would like to use the cookie to save the token in order to let the web service to authenticate whether the client''s token is correct or not.
The following is my code. please give me example code, if you can. 

using System;
using System.Collections.Generic;
using System.Linq;
using System.Web;
using System.Web.Services;
using System.Web.Services.Protocols;
using System.Text;

namespace AuthWebApplication
{
    using System.Security.Cryptography;

    /// summary
    /// Summary description for WebService1
    /// /summary
    [WebService(Namespace = "http://tempuri.org/")]
    [WebServiceBinding(ConformsTo = WsiProfiles.BasicProfile1_1)]
    [System.ComponentModel.ToolboxItem(false)]
    // To allow this Web Service to be called from script, using ASP.NET AJAX, uncomment the following line. 
    // [System.Web.Script.Services.ScriptService]
    public class WebService1 : System.Web.Services.WebService
    {
        public WebService1()
        {

            //Uncomment the following line if using designed components 
            //InitializeComponent(); 
        }
        //public AuthHeader SoapAuthentication;

        [WebMethod(Description = "A sample Web Method to demonstrate a simple web Service Authentication using SOAP Headers")]
        public string SampleWebMethod(string Username, String Password)
        {

            if (Username == "demo" && Password == "123")
            {

                string token = Guid.NewGuid().ToString();

                HttpRuntime.Cache.Add(token, Username, null,

                System.Web.Caching.Cache.NoAbsoluteExpiration,

                TimeSpan.FromMinutes(60),

                System.Web.Caching.CacheItemPriority.NotRemovable,

                null);

                return token + "is an Authenticated User to access the Web Method";
              //  return Username + " is an Authenticated User to access the Web Method";
            }
            else
            {
                return "Access Denied for " + Username;
            }

        }

}


}

您可以使用Response对象将内容存储在cookie中.
You can use Response object to store the content in cookie.
Response.Cookies["userInfo"]["Username"] = "demo";
Response.Cookies["userInfo"]["Password"] = "123";
Response.Cookies["userInfo"].Expires = DateTime.Now.AddDays(1);


string userData ="123";


// Create a cookie authentication ticket.
               ticket = new FormsAuthenticationTicket(
                   1,                                // version
                   Test,                             // user name
                   DateTime.Now,                     // issue time
                   DateTime.Now.AddDays(3),          // expires every hour
                   false,                            // don't persist cookie
                   userData                          // user data
                   );
               // Encrypt the ticket
               String cookieStr = FormsAuthentication.Encrypt(ticket);

               // Send the cookie to the client
               HttpContext.Current.Response.Cookies["Testdata"].Value = cookieStr;
               HttpContext.Current.Response.Cookies["Testdata"].Path = "/";
                HttpContext.Current.Response.Cookies["Testdata"].Expires   = DateTime.Now.AddMonths(3);


相关推荐