Export (0) Print
Expand All

IAuthenticationModule.Authenticate Method

Returns an instance of the Authorization class in respose to an authentication challenge from a server.

Namespace: System.Net
Assembly: System (in system.dll)

Authorization^ Authenticate (
	String^ challenge, 
	WebRequest^ request, 
	ICredentials^ credentials
)
Authorization Authenticate (
	String challenge, 
	WebRequest request, 
	ICredentials credentials
)
function Authenticate (
	challenge : String, 
	request : WebRequest, 
	credentials : ICredentials
) : Authorization

Parameters

challenge

The authentication challenge sent by the server.

request

The WebRequest instance associated with the challenge.

credentials

The credentials associated with the challenge.

Return Value

An Authorization instance containing the authorization message for the request, or a null reference (Nothing in Visual Basic) if the challenge cannot be handled.

The Authenticate method conducts the authentication process with the server and returns an Authorization instance to the AuthenticationManager.

Notes to Implementers The AuthenticationManager calls the Authenticate method on registered authentication modules to determine which module handles the challenge. If the authentication module cannot handle the challenge, the Authenticate method must return a null reference (Nothing in Visual Basic). If the authentication module encounters an error while conducting the authentication process, Authenticate must throw an exception.

The following example shows how to use the Authenticate method. For a complete example refer to the AuthenticationManager class.

// Authenticate is the core method for this custom authentication.
// When an internet resource requests authentication, the WebRequest::GetResponse
// method calls the AuthenticationManager::Authenticate method. This method, in
// turn, calls the Authenticate method on each of the registered authentication
// modules, in the order they were registered. When the authentication is
// complete an Authorization object is returned to the WebRequest, as
// shown by this routine's retun type.
virtual Authorization^ Authenticate( String^ challenge, WebRequest^ request, ICredentials^ credentials )
{
   Encoding^ ASCII = Encoding::ASCII;
   
   // Get the username and password from the credentials
   NetworkCredential^ MyCreds = credentials->GetCredential( request->RequestUri, "Basic" );
   if ( PreAuthenticate( request, credentials ) == nullptr )
         Console::WriteLine( "\n Pre-authentication is not allowed." );
   else
         Console::WriteLine( "\n Pre-authentication is allowed." );

   
   // Verify that the challenge satisfies the authorization requirements.
   bool challengeOk = checkChallenge( challenge, MyCreds->Domain );
   if (  !challengeOk )
         return nullptr;

   
   // Create the encrypted string according to the Basic authentication format as
   // follows:
   // a)Concatenate username and password separated by colon;
   // b)Apply ASCII encoding to obtain a stream of bytes;
   // c)Apply Base64 Encoding to this array of bytes to obtain the encoded
   // authorization.
   String^ BasicEncrypt = String::Concat( MyCreds->UserName, ":", MyCreds->Password );
   String^ BasicToken = String::Concat( "Basic ", Convert::ToBase64String( ASCII->GetBytes( BasicEncrypt ) ) );
   
   // Create an Authorization object using the above encoded authorization.
   Authorization^ resourceAuthorization = gcnew Authorization( BasicToken );
   
   // Get the Message property which contains the authorization string that the
   // client returns to the server when accessing protected resources
   Console::WriteLine( "\n Authorization Message: {0}", resourceAuthorization->Message );
   
   // Get the Complete property which is set to true when the authentication process
   // between the client and the server is finished.
   Console::WriteLine( "\n Authorization Complete: {0}", resourceAuthorization->Complete );
   
   Console::WriteLine( "\n Authorization ConnectionGroupId: {0}", resourceAuthorization->ConnectionGroupId );
   return resourceAuthorization;
}


// Authenticate is the core method for this custom authentication.
// When an Internet resource requests authentication, the WebRequest.
// GetResponse  method calls the AuthenticationManager.Authenticate method. 
// This method, in  turn, calls the Authenticate method on each of the 
// registered authentication modules, in the order in which they were 
// registered. When the authentication is  complete an Authorization object 
// is returned to the WebRequest.
public Authorization Authenticate(
    String challenge, WebRequest request, ICredentials credentials)
{
    Encoding ascii = Encoding.get_ASCII();

    // Get the username and password from the credentials
    NetworkCredential myCreds = credentials.GetCredential(
                                request.get_RequestUri(), "Basic");
    if (PreAuthenticate(request, credentials) == null) {
        Console.WriteLine("\n Pre-authentication is not allowed.");
    }
    else {
        Console.WriteLine("\n Pre-authentication is allowed.");
    }

    // Verify that the challenge satisfies the authorization requirements.
    boolean challengeOk = CheckChallenge(challenge, myCreds.get_Domain());

    if (!(challengeOk)) {
        return null;
    }
    // Create the encrypted string according to the Basic authentication 
    // format as follows:
    // a)Concatenate the username and password separated by colon;
    // b)Apply ascii encoding to obtain a stream of bytes;
    // c)Apply Base64 encoding to this array of bytes to obtain the encoded 
    // authorization.
    String basicEncrypt = myCreds.get_UserName() + ":" 
        + myCreds.get_Password();
    String basicToken = "Basic " 
        + Convert.ToBase64String(ascii.GetBytes(basicEncrypt));

    // Create an Authorization object using the encoded
    // authorization above.
    Authorization resourceAuthorization = new Authorization(basicToken);

    // Get the Message property, which contains the authorization string 
    // that the client returns to the server when accessing protected 
    // resources.
    Console.WriteLine("\n Authorization Message:{0}", 
        resourceAuthorization.get_Message());

    // Get the Complete property, which is set to true when the 
    // authentication process between the client and the
    // server is finished.
    Console.WriteLine("\n Authorization Complete:{0}", 
        System.Convert.ToString(resourceAuthorization.get_Complete()));

    Console.WriteLine("\n Authorization ConnectionGroupId:{0}", 
        resourceAuthorization.get_ConnectionGroupId());
    return resourceAuthorization;
} //Authenticate

Windows 98, Windows 2000 SP4, Windows CE, Windows Millennium Edition, Windows Mobile for Pocket PC, Windows Mobile for Smartphone, Windows Server 2003, Windows XP Media Center Edition, Windows XP Professional x64 Edition, Windows XP SP2, Windows XP Starter Edition

The .NET Framework does not support all versions of every platform. For a list of the supported versions, see System Requirements.

.NET Framework

Supported in: 2.0, 1.1, 1.0

.NET Compact Framework

Supported in: 2.0, 1.0

Community Additions

ADD
Show:
© 2014 Microsoft