Reputation: 2150
How to read custom header in IdentityServer4?
I would like to authenticate user not just based on username and password, but also based on tenant. I would like to pass tenant as custom header X-Company-Tenant. Can I read this custom header value in ResourceOwnerPasswordValidator in procedure ValidateAsync?
Is it possible to create a middleware on IdentityServer4 to read header from request and pass that value to ValidateAsync?
Upvotes: 0
Views: 789
Answers (1)
Reputation: 18482
In ASP.NET you can inject the IHttpContextAccessor into anything that comes from DI (as a constructor dependency). This will give you access to the current HTTP context - including the request headers.
That said - you could also post the tenant as a body member and you would get easy access from the context object passed into your validator.
Upvotes: 2
Related Questions
- How to extract custom header value?
- Include custom WWW-Authenticate header in 401 Unauthorised response when using Microsoft.Identity.Web
- How to get custom claims for IdentityServer4 Itself
- Pass custom HTTP header to IdentityServer 4 from oidc-client-js
- IdentityServer4 login api
- Pass custom header value to IdentityServer4 Login
- API is authorized without the Authorization Headers in Request using Identity Server 4 and .net core Identity
- .Net Core IdentityServer4 Get Authenticated User
- Retrieve access token from a customised header
- How to Get a custom header value from an HttpAuthenticationContext