asp.net web api - ODataController BearerToken Authorization denied -

-


asp.net web api - ODataController BearerToken Authorization denied -

i'm trying implement authentication provider webapi services. im using guide: http://bitoftech.net/2014/06/01/token-based-authentication-asp-net-web-api-2-owin-asp-net-identity/ testing purpose i've implemented 2 controllers in separate webapi-project:

public class testapicontroller : apicontroller { [authorize] public string get() { homecoming "secure"; } public string get(int id) { homecoming "not secure"; } } public class testodatacontroller : odatacontroller { [authorize] [enablequery] public httpresponsemessage get() { homecoming new httpresponsemessage(httpstatuscode.ok); } }

my goal utilize odata controller in end.

when phone call localhost:port/api/testapi , set bearer token in header, everythings works fine. when phone call localhost:port/odata/testodata , add together token receive message :

authorization has been denied request.

it doesn't matter if set token in header or not. if remove authorize attribute works fine. i'm using postman phone call methods, if of interest. @ moment i'm using iis-express visual studio host controllers, iis alread configured produces same message.

my startup.cs (the interesting part...)

public void configuration(iappbuilder app) { var config = new httpconfiguration(); configureoauth(app); filterconfig.register(config); odataconfig.register(config); webapiconfig.register(config); app.usecors(corsoptions.allowall); app.usewebapi(config); } public void configureoauth(iappbuilder app) { //token consumption app.useoauthbearerauthentication(new oauthbearerauthenticationoptions {}); }

odata , webconfig :

public class odataconfig { public static void register(httpconfiguration config) { odataconventionmodelbuilder modelbuilder = new odataconventionmodelbuilder(); modelbuilder.entityset<mymodel>("mymodel"); var conventions = odataroutingconventions.createdefault(); var route = config.routes.mapodataroutefixed( routename: "odataroute", routeprefix: "odata", model: modelbuilder.getedmmodel(), conventions: conventions) route; } } public static class webapiconfig { public static void register(httpconfiguration config) { config.maphttpattributeroutes(); config.routes.maphttproute( name: "defaultapi", routetemplate: "api/{controller}/{id}", defaults: new { id = routeparameter.optional } ); config.formatters.jsonformatter.serializersettings.contractresolver = new camelcasepropertynamescontractresolver(); } }

the account-controller add together new user in project. database looks , token generation works, too. it's same code illustration bitoftech-demo.

i don't see difference betweens these controllers. auhtorize attribute recognized controller...but else wrong. hints appreciated.

update after research , first answers updated startup values. old options necessary token generation , not token consumption. still api controllers works , odatacontroller throws "authorization denied".

update2 worked now. i'm not quite sure why. removed filterconfig :

public class filterconfig { public static void register(httpconfiguration config) { //config.suppressdefaulthostauthentication(); //config.filters.add(new hostauthenticationfilter(oauthdefaults.authenticationtype)); } }

but have no thought why working before api controller , not odata controller...

if utilize 1 project getting token , webapi, both must have same machine key in web.config.

in next post of same serial next explains how it: decouple owin authorization server resource server

example:

<system.web> ... <machinekey validationkey="57b449bba8f9e656087ff7848727e122c5f5966f65ac0fc25fb3532193b59cfcd13b370883ffc184c1f1500638f33e6f67b37caed1d9bc65bbc6cffb232bfd0b" decryptionkey="6d9fbe88d16b3fa5b5e6b37460bbe50da85d5b4c482159006b5a337c58aa9e79" validation="sha1" decryption="aes" /> ... </system.web>

asp.net-web-api odata owin

Comments

Post a Comment

Popular posts from this blog

java - How to set log4j.defaultInitOverride property to false in jboss server 6 -

-
java - How to set log4j.defaultInitOverride property to false in jboss server 6 - how set log4j property false in jboss. not using log4j in application still property has set true. the reason, why trying set property false is, suspecting property overrides java.util.logging.logger configuration provided application. might because of this, log file not getting generated. boot.log infomation below: 02:46:10,495 debug [serverinfo] log4j.defaultinitoverride: true 02:46:10,496 debug [serverinfo] org.jboss.deployers.spi.deployer.matchers.nameignoremechanism: org.jboss.deployers.spi.deployer.helpers.dummynameignoremechanism 02:46:10,496 debug [serverinfo] org.jboss.logging.logger.pluginclass: org.jboss.logging.logmanager.loggerpluginimpl i have found in boot.log in jboss. in 1 of blog, developers told me that, log4j.defaultinitoverride property should set false avoid override of java.util.logging.logger. comment same if wrong. java logging jboss log4j
Read more

c - GStreamer 1.0 1.4.5 RTSP Example Server sends 503 Service unavailable -

-
c - GStreamer 1.0 1.4.5 RTSP Example Server sends 503 Service unavailable - i'm trying create rtsp server based on gstreamer 1.0 1.4.5 plugin. source code of illustration taken here. with_tls , with_auth flags not enabled. i'm compiling using visual studio 2013 community edition. project building , running successfully. when i'm trying play video using vlc on address rtsp://127.0.0.1:8554/test says can't open mrl. recorded traffic (using rawcap) of communication between compiled server , vlc player following: request: options rtsp://127.0.0.1:8554/test rtsp/1.0 cseq: 2 user-agent: libvlc/2.2.0 (live555 streaming media v2014.07.25) response: rtsp/1.0 200 ok cseq: 2 public: options, describe, get_parameter, pause, play, setup, set_parameter, teardown server: gstreamer rtsp server date: thu, 09 apr 2015 03:35:30 gmt request: describe rtsp://127.0.0.1:8554/test rtsp/1.0 cseq: 3 user-agent: libvlc/2.2.0 (live555 streaming media v2014.07.25) accept: applicat...
Read more

Using ajax with sonata admin list view pagination -

-
Using ajax with sonata admin list view pagination - i'm using sonata admin in project. in list view sonata refresh page when clik sec list pagination. that's default behavior of sonata.is there way utilize ajax phone call list view pagination !!! same question when using sortable list view. thanks. this possible, have overwrite of basic functionality of sonata admin bundle. tested symfony 2.6.6 sonata admin-bundle dev-master (4f23e1a30e49681bf8ebdbbae549848784be7699) 1. edit bundles services.yml you have implement own crudcontroller , new list template. tell in services.yml sonata.admin.youradmin: class: your\bundle\admin\youradmin tags: - { name: sonata.admin, manager_type: orm, group: "groupname", label: "grouplabel" } arguments: - ~ - your\bundle\entity\entityclass - yourbundle:yournewcrud # <- add together crud class here calls: ...
Read more