步骤可参考网址:ASP.NET Core3.1使用IdentityServer4实现授权登录(二)
具体步骤:
- 创建API资源
- 感受API资源是否受保护
- 获取token
- 带着获取到的token请求受保护的API资源
右键解决方案–>添加–>现有项目。
注意:post请求,且为body形式下的x-www-form-urlencoded形式
补充说明(三)什么是API资源例如:
public class WeatherForecastController : Controllerbase
{
private static readonly string[] Summaries = new[]
{
"Freezing", "Bracing", "Chilly", "Cool", "Mild", "Warm", "Balmy", "Hot", "Sweltering", "Scorching"
};
private readonly ILogger _logger;
public WeatherForecastController(ILogger logger)
{
_logger = logger;
}
[HttpGet]
public IEnumerable Get()
{
var rng = new Random();
return Enumerable.Range(1, 5).Select(index => new WeatherForecast
{
Date = DateTime.Now.AddDays(index),
TemperatureC = rng.Next(-20, 55),
Summary = Summaries[rng.Next(Summaries.Length)]
})
.ToArray();
}
}
补充说明(四)[Authorize] 引用的作用
使API资源收到保护。
