2 Web Api项目中的因子身份验证

时间:2016-10-11 19:28:15

标签: asp.net asp.net-web-api asp.net-web-api2

我正在尝试在Web Api项目中实现2 Factor Authentication。但似乎2FA无法在Web Api中实现,其中AccountController继承了ApiController。是否可以在Web Api解决方案中实现2FA而不是MVC?

1 个答案:

答案 0 :(得分:1)

问题非常广泛,但回答你的问题是可能的。

请参阅此处 - http://bitoftech.net/2014/10/15/two-factor-authentication-asp-net-web-api-angularjs-google-authenticator/

负责生成验证码的链接代码 - 

public static class TimeSensitivePassCode
{
    public static string GeneratePresharedKey()
    {
        byte[] key = new byte[10]; // 80 bits
        using (var rngProvider = new RNGCryptoServiceProvider())
        {
            rngProvider.GetBytes(key);
        }

        return key.ToBase32String();
    }

    public static IList<string> GetListOfOTPs(string base32EncodedSecret)
    {
        DateTime epochStart = new DateTime(1970, 01, 01, 0, 0, 0, 0, DateTimeKind.Utc);

        long counter = (long)Math.Floor((DateTime.UtcNow - epochStart).TotalSeconds / 30);
        var otps = new List<string>();

        otps.Add(GetHotp(base32EncodedSecret, counter - 1)); // previous OTP
        otps.Add(GetHotp(base32EncodedSecret, counter)); // current OTP
        otps.Add(GetHotp(base32EncodedSecret, counter + 1)); // next OTP

        return otps;
    }

    private static string GetHotp(string base32EncodedSecret, long counter)
    {
        byte[] message = BitConverter.GetBytes(counter).Reverse().ToArray(); //Intel machine (little endian) 
        byte[] secret = base32EncodedSecret.ToByteArray();

        HMACSHA1 hmac = new HMACSHA1(secret, true);

        byte[] hash = hmac.ComputeHash(message);
        int offset = hash[hash.Length - 1] & 0xf;
        int truncatedHash = ((hash[offset] & 0x7f) << 24) |
        ((hash[offset + 1] & 0xff) << 16) |
        ((hash[offset + 2] & 0xff) << 8) |
        (hash[offset + 3] & 0xff);

        int hotp = truncatedHash % 1000000; 
        return hotp.ToString().PadLeft(6, '0');
    }
}

public static class StringHelper
{
    private static string alphabet = "ABCDEFGHIJKLMNOPQRSTUVWXYZ234567";

    public static string ToBase32String(this byte[] secret)
    {
        var bits = secret.Select(b => Convert.ToString(b, 2).PadLeft(8, '0')).Aggregate((a, b) => a + b);

        return Enumerable.Range(0, bits.Length / 5).Select(i => alphabet.Substring(Convert.ToInt32(bits.Substring(i * 5, 5), 2), 1)).Aggregate((a, b) => a + b);
    }

    public static byte[] ToByteArray(this string secret)
    {
        var bits = secret.ToUpper().ToCharArray().Select(c => Convert.ToString(alphabet.IndexOf(c), 2).PadLeft(5, '0')).Aggregate((a, b) => a + b);

        return Enumerable.Range(0, bits.Length / 8).Select(i => Convert.ToByte(bits.Substring(i * 8, 8), 2)).ToArray();
    }

}
相关问题
最新问题