UserNameSecurityTokenAuthenticator.ValidateUserNamePasswordCore 方法

定義

命名空間:

System.IdentityModel.Selectors

組件:

System.IdentityModel.dll

在衍生類別中覆寫時，驗證指定的使用者名稱和密碼，並傳回 UserNameSecurityToken 安全性權杖的授權原則集合。

protected:
 abstract System::Collections::ObjectModel::ReadOnlyCollection<System::IdentityModel::Policy::IAuthorizationPolicy ^> ^ ValidateUserNamePasswordCore(System::String ^ userName, System::String ^ password);

protected abstract System.Collections.ObjectModel.ReadOnlyCollection<System.IdentityModel.Policy.IAuthorizationPolicy> ValidateUserNamePasswordCore (string userName, string password);

abstract member ValidateUserNamePasswordCore : string * string -> System.Collections.ObjectModel.ReadOnlyCollection<System.IdentityModel.Policy.IAuthorizationPolicy>

Protected MustOverride Function ValidateUserNamePasswordCore (userName As String, password As String) As ReadOnlyCollection(Of IAuthorizationPolicy)

參數

userName

String

與安全性權杖相關聯的使用者名稱。

password

String

與安全性權杖相關聯的密碼。

傳回

ReadOnlyCollection<IAuthorizationPolicy>

型別為 ReadOnlyCollection<T> 的 IAuthorizationPolicy，其中包含對這個應用程式有效用的授權原則集合。

範例

protected override ReadOnlyCollection<IAuthorizationPolicy> ValidateUserNamePasswordCore(string userName, string password)
{
    if (!ValidateUserNameFormat(userName))
        throw new SecurityTokenValidationException("Incorrect UserName format");

    ClaimSet claimSet = new DefaultClaimSet(ClaimSet.System, new Claim(ClaimTypes.Name, userName, Rights.PossessProperty));
    List<IIdentity> identities = new List<IIdentity>(1);
    identities.Add(new GenericIdentity(userName));
    List<IAuthorizationPolicy> policies = new List<IAuthorizationPolicy>(1);
    policies.Add(new UnconditionalPolicy(ClaimSet.System, claimSet, DateTime.MaxValue.ToUniversalTime(), identities));
    return policies.AsReadOnly();
}

    Protected Overrides Function ValidateUserNamePasswordCore(ByVal userName As String, ByVal password As String) As ReadOnlyCollection(Of IAuthorizationPolicy)

        If Not ValidateUserNameFormat(userName) Then
            Throw New SecurityTokenValidationException("Incorrect UserName format")
        End If
        Dim setOfClaims As New DefaultClaimSet(ClaimSet.System, New Claim(ClaimTypes.Name, userName, Rights.PossessProperty))
        Dim identities As New List(Of IIdentity)(1)

        identities.Add(New GenericIdentity(userName))
        Dim policies As New List(Of IAuthorizationPolicy)(1)
        policies.Add(New UnconditionalPolicy(ClaimSet.System, setOfClaims, DateTime.MaxValue.ToUniversalTime(), identities))
        Return policies.AsReadOnly()

    End Function 'New
End Class

備註

覆寫 ValidateUserNamePasswordCore 方法以驗證 UserNameSecurityToken 安全性權杖。

覆寫 ValidateUserNamePasswordCore 方法時，請遵循下列方針：

• 當傳遞至 token 參數中的安全性權杖無法通過驗證時，就擲回 SecurityTokenValidationException 例外狀況。

• 如果沒有任何對這個應用程式有效用的授權原則時，就傳回型別為 ReadOnlyCollection<T> 的空 IAuthorizationPolicy。

當這個方法傳 null回 時，Windows Communication Foundation 會 SecurityTokenValidationException 擲回例外狀況。