UserNameSecurityTokenAuthenticator.ValidateUserNamePasswordCore 方法

定义

命名空间:: System.IdentityModel.Selectors

程序集:: System.IdentityModel.dll

重要

一些信息与预发行产品相关，相应产品在发行之前可能会进行重大修改。对于此处提供的信息，Microsoft 不作任何明示或暗示的担保。

在派生类中重写时，对指定的用户名和密码进行身份验证，并返回安全令牌的授权策略 UserNameSecurityToken 集。

protected:
 abstract System::Collections::ObjectModel::ReadOnlyCollection<System::IdentityModel::Policy::IAuthorizationPolicy ^> ^ ValidateUserNamePasswordCore(System::String ^ userName, System::String ^ password);

protected abstract System.Collections.ObjectModel.ReadOnlyCollection<System.IdentityModel.Policy.IAuthorizationPolicy> ValidateUserNamePasswordCore(string userName, string password);

abstract member ValidateUserNamePasswordCore : string * string -> System.Collections.ObjectModel.ReadOnlyCollection<System.IdentityModel.Policy.IAuthorizationPolicy>

Protected MustOverride Function ValidateUserNamePasswordCore (userName As String, password As String) As ReadOnlyCollection(Of IAuthorizationPolicy)

参数

userName: String

与安全令牌关联的用户名。

password: String

与安全令牌关联的密码。

ReadOnlyCollection<IAuthorizationPolicy>

一种 ReadOnlyCollection<T> 类型 IAuthorizationPolicy ，其中包含此应用程序的授权策略集。

示例

protected override ReadOnlyCollection<IAuthorizationPolicy> ValidateUserNamePasswordCore(string userName, string password)
{
    if (!ValidateUserNameFormat(userName))
        throw new SecurityTokenValidationException("Incorrect UserName format");

    ClaimSet claimSet = new DefaultClaimSet(ClaimSet.System, new Claim(ClaimTypes.Name, userName, Rights.PossessProperty));
    List<IIdentity> identities = new List<IIdentity>(1);
    identities.Add(new GenericIdentity(userName));
    List<IAuthorizationPolicy> policies = new List<IAuthorizationPolicy>(1);
    policies.Add(new UnconditionalPolicy(ClaimSet.System, claimSet, DateTime.MaxValue.ToUniversalTime(), identities));
    return policies.AsReadOnly();
}

    Protected Overrides Function ValidateUserNamePasswordCore(ByVal userName As String, ByVal password As String) As ReadOnlyCollection(Of IAuthorizationPolicy)

        If Not ValidateUserNameFormat(userName) Then
            Throw New SecurityTokenValidationException("Incorrect UserName format")
        End If
        Dim setOfClaims As New DefaultClaimSet(ClaimSet.System, New Claim(ClaimTypes.Name, userName, Rights.PossessProperty))
        Dim identities As New List(Of IIdentity)(1)

        identities.Add(New GenericIdentity(userName))
        Dim policies As New List(Of IAuthorizationPolicy)(1)
        policies.Add(New UnconditionalPolicy(ClaimSet.System, setOfClaims, DateTime.MaxValue.ToUniversalTime(), identities))
        Return policies.AsReadOnly()

    End Function 'New
End Class

注解

ValidateUserNamePasswordCore重写方法以对安全令牌进行身份验证UserNameSecurityToken。

ValidateUserNamePasswordCore重写该方法时，请遵循以下准则：

无法验证传入 token 参数的安全令牌时，引发 SecurityTokenValidationException 异常。
如果此应用程序没有有效的授权策略，则返回一个空 ReadOnlyCollection<T> 的类型 IAuthorizationPolicy。

当此方法返回 null 时，Windows Communication Foundation将引发 SecurityTokenValidationException 异常。

适用于

反馈

此页面是否有帮助？