logo标签列表

使用C#进行基本身份验证调用WEB API

c#asp.netasp.net-web-apibasic-authenticationcredentials
12

我有一个工作的WEB API,我添加了基本身份验证到API中(用户名为“testing”,密码为“123456”)。 但是,在尝试从我的Web表单调用该API时,我一直收到“(401)未经授权”的消息。 我应该在Web代码中更改什么才能成功调用API?

 string url = String.Format("http://example.com"); //here I have the correct url for my API
 HttpWebRequest requestObj = (HttpWebRequest)WebRequest.Create(url);
 requestObj.Method = "Get";
 requestObj.PreAuthenticate = true;
 requestObj.Credentials = new NetworkCredential("testing", "123456");
 HttpWebResponse responseObj = null;
 responseObj = (HttpWebResponse)requestObj.GetResponse();
 string strresult = null;
 using (Stream stream = responseObj.GetResponseStream())
 {
     StreamReader sr = new StreamReader(stream);
     strresult = sr.ReadToEnd();
     sr.Close();
 }

这是我的 API 在认证方面所搜索的内容:

actionContext.Request.Headers.Authorization.Parameter

我应该添加标题还是使用NetworkCredential是一样的吗?

5个回答
33

这应该会有所帮助:

HttpMessageHandler handler = new HttpClientHandler();
    
var httpClient = new HttpClient(handler)
{
     BaseAddress = new Uri(url),
     Timeout = new TimeSpan(0, 2, 0)
};
    
httpClient.DefaultRequestHeaders.Add("ContentType", "application/json");
    
//This is the key section you were missing    
var plainTextBytes = System.Text.Encoding.UTF8.GetBytes("testing:123456");
string val = System.Convert.ToBase64String(plainTextBytes);
httpClient.DefaultRequestHeaders.Add("Authorization", "Basic " + val);
    
HttpResponseMessage response = httpClient.GetAsync(url).Result;
string content = string.Empty;
    
using (StreamReader stream = new StreamReader(response.Content.ReadAsStreamAsync().Result, System.Text.Encoding.GetEncoding(_encoding)))
{
     content = stream.ReadToEnd();
}
非常感谢您!! - Maya Berk
4

这是我需要的行:

requestObj.Headers["Authorization"] = "Basic " + Convert.ToBase64String(Encoding.Default.GetBytes("username:password"));
1
我刚刚发现在 .NET Core 3.1 中,您可以这样做:
    HttpRequestMessage request = new HttpRequestMessage(
        HttpMethod.Post,
        "your-api-url-here");

    request.Headers.Authorization = new BasicAuthenticationHeaderValue(username, password);
0

我认为你的API可能需要添加一个头部(如果你还没有这样做)。看一下这篇文章:

https://en.wikipedia.org/wiki/Basic_access_authentication#Client_side

但基本上,你的API将需要添加一个Authorization头部。 Authorization键将包含单词Basic,后跟一个空格,然后是使用Base64加密的用户名和密码。所以在你的情况下,testing:123456将使用base64加密为dGVzdGluZzoxMjM0NTY=。因此,标题记录将如下所示:

Authorization: Basic dGVzdGluZzoxMjM0NTY=

非常感谢!!那就是我所做的。 - Maya Berk
0

(基本身份验证)这是调用经过身份验证的API的另一种解决方案

 class Program
{
    static void Main(string[] args)
    {
        BaseClient clientbase = new BaseClient("https://website.com/api/v2/", "username", "password");
        BaseResponse response = new BaseResponse();
        BaseResponse response = clientbase.GetCallV2Async("Candidate").Result;
    }


    public async Task<BaseResponse> GetCallAsync(string endpoint)
    {
        try
        {
            HttpResponseMessage response = await client.GetAsync(endpoint + "/").ConfigureAwait(false);
            if (response.IsSuccessStatusCode)
            {
                baseresponse.ResponseMessage = await response.Content.ReadAsStringAsync();
                baseresponse.StatusCode = (int)response.StatusCode;
            }
            else
            {
                baseresponse.ResponseMessage = await response.Content.ReadAsStringAsync();
                baseresponse.StatusCode = (int)response.StatusCode;
            }
            return baseresponse;
        }
        catch (Exception ex)
        {
            baseresponse.StatusCode = 0;
            baseresponse.ResponseMessage = (ex.Message ?? ex.InnerException.ToString());
        }
        return baseresponse;
    }
}


public class BaseResponse
{
    public int StatusCode { get; set; }
    public string ResponseMessage { get; set; }
}

public class BaseClient
{
    readonly HttpClient client;
    readonly BaseResponse baseresponse;

    public BaseClient(string baseAddress, string username, string password)
    {
        HttpClientHandler handler = new HttpClientHandler()
        {
            Proxy = new WebProxy("http://127.0.0.1:8888"),
            UseProxy = false,
        };

        client = new HttpClient(handler);
        client.BaseAddress = new Uri(baseAddress);
        client.DefaultRequestHeaders.Accept.Clear();
        client.DefaultRequestHeaders.Accept.Add(new MediaTypeWithQualityHeaderValue("application/json"));
        var byteArray = Encoding.ASCII.GetBytes(username + ":" + password);

        client.DefaultRequestHeaders.Authorization = new System.Net.Http.Headers.AuthenticationHeaderValue("Basic", Convert.ToBase64String(byteArray));

        baseresponse = new BaseResponse();

    }
}
网页内容由stack overflow 提供, 点击上面的
可以查看英文原文,
原文链接