Authentication in Restful Service

Question

Authentication in Restful Service

Asked 9 years, 9 months ago

Viewed 4,228 times

4

In the example below, I need to pass a login pair/password, because the REST service requires authentication (Basic Authentication). So how should I pass this information in the section below? (Additional information: authentication must be done encoded in the upload header)

using (var client = new HttpClient())
{
    client.BaseAddress = new Uri("http://dominio:9000/");
    client.DefaultRequestHeaders.Accept.Clear();
    client.DefaultRequestHeaders.Accept.Add(new MediaTypeWithQualityHeaderValue("application/json"));

    // New code:
    HttpResponseMessage response = await client.GetAsync("api/products/1");
    if (response.IsSuccessStatusCode)
    {
        Product product = await response.Content.ReadAsAsync>Product>();
        Console.WriteLine("{0}\t${1}\t{2}", product.Name, product.Price, product.Category);
    }
}

1

It depends on the implementation of the REST service you are trying to use. Some ask for the API key as an optional parameter, others ask for a password/login pair in the headers. View the API documentation and change the question.

– Rodrigo Rigotti

2014/09/08 at 19:27
Dear Rodrigo, I did as oriented. It is not optional, it should be covered in Header. All the API documentation is geared towards JAVA, I’m having a hard time with this. Thank you.

– SantanaFire

2014/09/08 at 20:14

2 answers

2

In the header of the request http you can pass an argument called Authorization. According to the http documentation, this argument by default expects you to report, a schema authentication and a token. You can customize this information if the API needs it, but by default the schema used by the browser are: Basic and the token contains the following format: login:senhar in base64.

You can try it:

using (var client = new HttpClient())
{
    client.BaseAddress = new Uri("http://dominio:9000/");
    client.DefaultRequestHeaders.Accept.Clear();
    client.DefaultRequestHeaders.Accept.Add(new MediaTypeWithQualityHeaderValue("application/json"));

    client.Headers.Authorization = new AuthenticationHeaderValue("Basic", 
                    Convert.ToBase64String(
                                System.Text.ASCIIEncoding.ASCII.GetBytes(
                                    string.Format("{0}:{1}", "seuUsuario", "suaSenha"))));

    // New code:
    HttpResponseMessage response = await client.GetAsync("api/products/1");
    if (response.IsSuccessStatusCode)
    {
        Product product = await response.Content.ReadAsAsync>Product>();
        Console.WriteLine("{0}\t${1}\t{2}", product.Name, product.Price, product.Category);
    }
}

1

Perfect Felipe! It worked perfectly, thank you.

– SantanaFire

2014/09/10 at 19:25
Cool Santana, happy to help. If possible mark as solution and send a voteup to collaborate with the website and for other users to find the solution to a similar problem. :)

– Felipe Oriani

2014/09/10 at 19:35
Done! Thanks again.

– SantanaFire

2014/09/15 at 16:50

Browser other questions tagged c# asp.net-mvc wcf asp.net-web-api

You are not signed in. Login or sign up in order to post.

by SantanaFire • **442** points · Answer 1 · 2014-09-09T20:55:49+00:00

After researching the subject, I discovered a path that not only elucidates but complements the general knowledge on this subject. So for those who wish to learn more about: Security in Web API, go to this URL[: http://msdn.microsoft.com/pt-br/library/dn376307.aspx#feedback][1]

Hugs.