WebApi with OWIN SelfHost and Windows Authentication

About

Asked 18/8, 2015 at 19:6 Answered 18/8, 2015 at 21:38

Solved asp.net-web-api owin windows-authentication self-hosting

I have a console application SERVER that hosts WebApi controllers using OWIN self-hosting, and runs under a custom account named "ServiceTest1".

In the same machine I have another console application CLIENT that runs under the account "ServiceTest2", and I want to capture in SERVER that "ServiceTest2" invoked a controller action. However:

WindowsIdentity.GetCurrent() is always "ServiceTest1".
Thread.CurrentPrincipal is an unauthenticated GenericIdentity.
RequestContext.Principal is null.
User is null.

What do I need to make this WebApi OWIN self-hosted to grab the Windows identity of the caller?

Thin answered 18/8, 2015 at 19:6 Comment(0)

Your question is a little unclear on exactly how you've implemented the Windows authentication.

Enable Windows authentication:

public class Startup
{
    public void Configuration(IAppBuilder app)
    {
        HttpListener listener = (HttpListener)app.Properties["System.Net.HttpListener"];
        listener.AuthenticationSchemes = AuthenticationSchemes.IntegratedWindowsAuthentication;

        // ...
    }
}

Get the user in an OWIN middleware:

public async Task Invoke(IDictionary<string, object> env)
{
    OwinContext context = new OwinContext(env);
    WindowsPrincipal user = context.Request.User as WindowsPrincipal;

    //...
}

Get the user in a Web API Controller:

// In a web api controller function
WindowsPrincipal user = RequestContext.Principal as WindowsPrincipal;

Gram answered 18/8, 2015 at 21:38 Comment(7)

What is that env parameter? I have normal WebApi controllers that inherit from ApiController. – Thin 18/8, 2015 at 21:56

Ah, I had read your question as wanting an OWIN method of grabbing the identity. I've edited my response with a Web API version as well. – Gram 18/8, 2015 at 22:35

RequestContext.Principal is null, any idea why? – Thin 19/8, 2015 at 6:32

It is running with Windows authentication right? When you access the api from ServiceTest2, it has to log in using Windows credentials? Other than that, I'm not sure. My server running on Owin self host with Windows Auth seems to be able to access the request principal. – Gram 19/8, 2015 at 16:35

That is the question, how to set up Windows authentication in a WebAPI self-hosted with OWIN. How did you configure Windows Authentication? – Thin 19/8, 2015 at 16:42

Ah, didn't realize you didn't have Windows auth already. Added some code for including that in OWIN startup. – Gram 19/8, 2015 at 20:58

When i want to get (System.Net.HttpListener)app.Properties["System.Net.HttpListener"] , it saying The given key was not present in the dictionary – Precession 5/1, 2019 at 11:21

Hot tags

Godot Unity Godot Help Programming Godot 4.X GUI GDScript 3D 2D Physics CSharp Godot 3.X VR XR Projects C++

Recommended topics

Hot tags