public class LDAPHelper

    {

        private DirectoryEntry _objDirectoryEntry;

        /// <summary>

        /// 构造函数

        /// </summary>

        /// <param name="LADPath">ldap的地址,例如"LDAP://***.***.48.110:389/dc=***,dc=com"</param>

        /// <param name="authUserName">连接用户名,例如"cn=root,dc=***,dc=com"</param>

        /// <param name="authPWD">连接密码</param>

        public bool OpenConnection(string LADPath, string authUserName, string authPWD)

        {    //创建一个连接 

             _objDirectoryEntry = new DirectoryEntry(LADPath, authUserName, authPWD, AuthenticationTypes.None);

             if (null == _objDirectoryEntry)

             {

                 return false;

             }

             else if (_objDirectoryEntry.Properties!=null&&_objDirectoryEntry.Properties.Count > )

             {

                 return true;

             }

             return false;

        }

        /// <summary>

        /// 检测一个用户和密码是否正确

        /// </summary>

        /// <param name="strLDAPFilter">(|(uid= {0})(cn={0}))</param>

        /// <param name="TestUserID">testuserid</param>

        /// <param name="TestUserPwd">testuserpassword</param>

        /// <param name="ErrorMessage"></param>

        /// <returns></returns>

        public bool CheckUidAndPwd(string strLDAPFilter, string TestUserID, string TestUserPwd, ref string ErrorMessage)

        {

            bool blRet = false;

            try

            {

                //创建一个检索

                DirectorySearcher deSearch = new DirectorySearcher(_objDirectoryEntry);

                //过滤名称是否存在

                deSearch.Filter =strLDAPFilter;

                deSearch.SearchScope = SearchScope.Subtree;

                //find the first instance 

                SearchResult objSearResult = deSearch.FindOne();

                //如果用户密码为空

                if (string.IsNullOrEmpty(TestUserPwd))

                {

                    if (null != objSearResult && null != objSearResult.Properties && objSearResult.Properties.Count > )

                    {

                        blRet = true;

                    }

                }

                else if (null != objSearResult && !string.IsNullOrEmpty(objSearResult.Path))

                {

                    //获取用户名路径对应的用户uid

                    int pos = objSearResult.Path.LastIndexOf('/');

                    string uid = objSearResult.Path.Remove(, pos + );

                    DirectoryEntry objUserEntry = new DirectoryEntry(objSearResult.Path, uid, TestUserPwd, AuthenticationTypes.None);

                    if (null != objUserEntry && objUserEntry.Properties.Count > )

                    {

                        blRet = true;

                    }

                }

            }

            catch (Exception ex)

            {

                if (null != _objDirectoryEntry)

                {

                    _objDirectoryEntry.Close();

                }

                ErrorMessage = "检测异常:"+ex.StackTrace;

            }

            return blRet;

        }

        /// <summary>

        /// 关闭连接

        /// </summary>

        public void closeConnection()

        {

            if (null != _objDirectoryEntry)

            {

                _objDirectoryEntry.Close();

            }

        }

    }

写了一个通用的认证类,请看代码

private void btnCheck_Click(object sender, EventArgs e)

{ 

string strLDAPFilter = string.Format(txtFilter.Text, txtUserName.Text.Trim());

//deSearch.Filter = "(&(objectClass=user)(sAMAccountName=" + username + "))"; 

string TestUserID = txtUserName.Text;

string TestUserPwd = txtPwd.Text;

LDAPHelper objldap = new LDAPHelper();

string strLDAPPath = txtLDAP.Text;

string strLDAPAdminName = txtLUserName.Text;

string strLDAPAdminPwd = txtLPwd.Text;

string strMsg = "";

bool blRet = objldap.OpenConnection(strLDAPPath, strLDAPAdminName, strLDAPAdminPwd); 

if (blRet)

{

blRet = objldap.CheckUidAndPwd(strLDAPFilter, TestUserID, TestUserPwd, ref strMsg);

if (blRet)

{

strMsg = "检测用户名" + TestUserID + "和密码" + TestUserPwd + "成功";

}

else if (!blRet && string.IsNullOrEmpty(strMsg))

{

strMsg = "检测用户名" + TestUserID + "和密码" + TestUserPwd + "失败";

}

}

this.txtLog.Text = System.DateTime.Now.ToString() + ":" + strMsg + "\r\n" + "\r\n" + this.txtLog.Text;

MessageBox.Show(strMsg);

}

}

public class LDAPHelper

{

private DirectoryEntry _objDirectoryEntry; 

/// <summary>

/// 构造函数

/// </summary>

/// <param name="LADPath">ldap的地址,例如"LDAP://***.***.48.110:389/dc=***,dc=com"</param>

/// <param name="authUserName">连接用户名,例如"cn=root,dc=***,dc=com"</param>

/// <param name="authPWD">连接密码</param>

public bool OpenConnection(string LADPath, string authUserName, string authPWD)

{ //创建一个连接

_objDirectoryEntry = new DirectoryEntry(LADPath, authUserName, authPWD, AuthenticationTypes.None); 

if (null == _objDirectoryEntry)

{

return false;

}

else if (_objDirectoryEntry.Properties!=null&&_objDirectoryEntry.Properties.Count > )

{

return true;

}

return false;

} 

/// <summary>

/// 检测一个用户和密码是否正确

/// </summary>

/// <param name="strLDAPFilter">(|(uid= {0})(cn={0}))</param>

/// <param name="TestUserID">testuserid</param>

/// <param name="TestUserPwd">testuserpassword</param>

/// <param name="ErrorMessage"></param>

/// <returns></returns>

public bool CheckUidAndPwd(string strLDAPFilter, string TestUserID, string TestUserPwd, ref string ErrorMessage)

{

bool blRet = false;

try

{

//创建一个检索

DirectorySearcher deSearch = new DirectorySearcher(_objDirectoryEntry);

//过滤名称是否存在

deSearch.Filter =strLDAPFilter;

deSearch.SearchScope = SearchScope.Subtree; 

//find the first instance

SearchResult objSearResult = deSearch.FindOne(); 

//如果用户密码为空

if (string.IsNullOrEmpty(TestUserPwd))

{

if (null != objSearResult && null != objSearResult.Properties && objSearResult.Properties.Count > )

{

blRet = true;

}

}

else if (null != objSearResult && !string.IsNullOrEmpty(objSearResult.Path))

{

//获取用户名路径对应的用户uid

int pos = objSearResult.Path.LastIndexOf('/');

string uid = objSearResult.Path.Remove(, pos + );

DirectoryEntry objUserEntry = new DirectoryEntry(objSearResult.Path, uid, TestUserPwd, AuthenticationTypes.None);

if (null != objUserEntry && objUserEntry.Properties.Count > )

{

blRet = true;

}

}

}

catch (Exception ex)

{

if (null != _objDirectoryEntry)

{

_objDirectoryEntry.Close();

}

ErrorMessage = "检测异常:"+ex.StackTrace;

}

return blRet;

} 

/// <summary>

/// 关闭连接

/// </summary>

public void closeConnection()

{

if (null != _objDirectoryEntry)

{

_objDirectoryEntry.Close();

}

}

}

调用

private void btnCheck_Click(object sender, EventArgs e)

{ 

string strLDAPFilter = string.Format(txtFilter.Text, txtUserName.Text.Trim());

//deSearch.Filter = "(&(objectClass=user)(sAMAccountName=" + username + "))"; 

string TestUserID = txtUserName.Text;

string TestUserPwd = txtPwd.Text;

LDAPHelper objldap = new LDAPHelper();

string strLDAPPath = txtLDAP.Text;

string strLDAPAdminName = txtLUserName.Text;

string strLDAPAdminPwd = txtLPwd.Text;

string strMsg = "";

bool blRet = objldap.OpenConnection(strLDAPPath, strLDAPAdminName, strLDAPAdminPwd); 

if (blRet)

{

blRet = objldap.CheckUidAndPwd(strLDAPFilter, TestUserID, TestUserPwd, ref strMsg);

if (blRet)

{

strMsg = "检测用户名" + TestUserID + "和密码" + TestUserPwd + "成功";

}

else if (!blRet && string.IsNullOrEmpty(strMsg))

{

strMsg = "检测用户名" + TestUserID + "和密码" + TestUserPwd + "失败";

}

}

this.txtLog.Text = System.DateTime.Now.ToString() + ":" + strMsg + "\r\n" + "\r\n" + this.txtLog.Text;

MessageBox.Show(strMsg);

}

}

实例下载:http://download.csdn.net/detail/paolei/6740833

LDAP是轻量目录访问协议,英文全称是Lightweight Directory Access Protocol,一般都简称为LDAP。它是基于X.500标准的,但是简单多了并且可以根据需要定制。与X.500不同,LDAP支持TCP/IP,这对访问Internet是必须的。LDAP的核心规范在RFC中都有定义,所有与LDAP相关的RFC都可以在LDAPman RFC网页中找到。

bool checkResult = false;

try

{

string username = Request.Params.Get("username");

string userpwd = Request.Params.Get("userpwd");

string strLADPath = "LDAP://OU=事业部,DC=HOLD,DC=Company,DC=COM"; 

DirectoryEntry objEntry = new DirectoryEntry(strLADPath);

objEntry.AuthenticationType = AuthenticationTypes.None; 

DirectorySearcher deSearch = new DirectorySearcher(objEntry);

//过滤名称是否存在

deSearch.Filter = "(&(objectClass=user)(sAMAccountName=" + username + "))";

deSearch.SearchScope = SearchScope.Subtree;

//find the first instance

SearchResult results = deSearch.FindOne();

//check username & userpwd

if (null != results)

{

DirectoryEntry objUserEntry = new DirectoryEntry(results.Path, username, userpwd);

if (null != objUserEntry && null != objUserEntry.Properties

&& objUserEntry.Properties.Contains("cn"))

{

checkResult = true;

}

} 

Response.Write("认证结果:" + checkResult.ToString());

}

catch (System.Exception ex)

{

Response.Write("认证异常"+ex.StackTrace);

Response.Write("认证结果:" + checkResult.ToString());

}

private void btnCheck_Click(object sender, EventArgs e)

{ 

string strLDAPFilter = string.Format(txtFilter.Text, txtUserName.Text.Trim());

//deSearch.Filter = "(&(objectClass=user)(sAMAccountName=" + username + "))"; 

string TestUserID = txtUserName.Text;

string TestUserPwd = txtPwd.Text;

LDAPHelper objldap = new LDAPHelper();

string strLDAPPath = txtLDAP.Text;

string strLDAPAdminName = txtLUserName.Text;

string strLDAPAdminPwd = txtLPwd.Text;

string strMsg = "";

bool blRet = objldap.OpenConnection(strLDAPPath, strLDAPAdminName, strLDAPAdminPwd); 

if (blRet)

{

blRet = objldap.CheckUidAndPwd(strLDAPFilter, TestUserID, TestUserPwd, ref strMsg);

if (blRet)

{

strMsg = "检测用户名" + TestUserID + "和密码" + TestUserPwd + "成功";

}

else if (!blRet && string.IsNullOrEmpty(strMsg))

{

strMsg = "检测用户名" + TestUserID + "和密码" + TestUserPwd + "失败";

}

}

this.txtLog.Text = System.DateTime.Now.ToString() + ":" + strMsg + "\r\n" + "\r\n" + this.txtLog.Text;

MessageBox.Show(strMsg);

}

} 

public class LDAPHelper

{

private DirectoryEntry _objDirectoryEntry; 

/// <summary>

/// 构造函数

/// </summary>

/// <param name="LADPath">ldap的地址,例如"LDAP://***.***.48.110:389/dc=***,dc=com"</param>

/// <param name="authUserName">连接用户名,例如"cn=root,dc=***,dc=com"</param>

/// <param name="authPWD">连接密码</param>

public bool OpenConnection(string LADPath, string authUserName, string authPWD)

{ //创建一个连接

_objDirectoryEntry = new DirectoryEntry(LADPath, authUserName, authPWD, AuthenticationTypes.None); 

if (null == _objDirectoryEntry)

{

return false;

}

else if (_objDirectoryEntry.Properties!=null&&_objDirectoryEntry.Properties.Count > )

{

return true;

}

return false;

} 

/// <summary>

/// 检测一个用户和密码是否正确

/// </summary>

/// <param name="strLDAPFilter">(|(uid= {0})(cn={0}))</param>

/// <param name="TestUserID">testuserid</param>

/// <param name="TestUserPwd">testuserpassword</param>

/// <param name="ErrorMessage"></param>

/// <returns></returns>

public bool CheckUidAndPwd(string strLDAPFilter, string TestUserID, string TestUserPwd, ref string ErrorMessage)

{

bool blRet = false;

try

{

//创建一个检索

DirectorySearcher deSearch = new DirectorySearcher(_objDirectoryEntry);

//过滤名称是否存在

deSearch.Filter =strLDAPFilter;

deSearch.SearchScope = SearchScope.Subtree; 

//find the first instance

SearchResult objSearResult = deSearch.FindOne(); 

//如果用户密码为空

if (string.IsNullOrEmpty(TestUserPwd))

{

if (null != objSearResult && null != objSearResult.Properties && objSearResult.Properties.Count > )

{

blRet = true;

}

}

else if (null != objSearResult && !string.IsNullOrEmpty(objSearResult.Path))

{

//获取用户名路径对应的用户uid

int pos = objSearResult.Path.LastIndexOf('/');

string uid = objSearResult.Path.Remove(, pos + );

DirectoryEntry objUserEntry = new DirectoryEntry(objSearResult.Path, uid, TestUserPwd, AuthenticationTypes.None);

if (null != objUserEntry && objUserEntry.Properties.Count > )

{

blRet = true;

}

}

}

catch (Exception ex)

{

if (null != _objDirectoryEntry)

{

_objDirectoryEntry.Close();

}

ErrorMessage = "检测异常:"+ex.StackTrace;

}

return blRet;

} 

/// <summary>

/// 关闭连接

/// </summary>

public void closeConnection()

{

if (null != _objDirectoryEntry)

{

_objDirectoryEntry.Close();

}

}

}

C# LDAP认证登录类参考的更多相关文章

  1. C# LDAP认证登录

    LDAP是轻量目录访问协议,英文全称是Lightweight Directory Access Protocol,一般都简称为LDAP.它是基于X.500标准的,但是简单多了并且可以根据需要定制.与X ...

  2. Shrio00 Shiro认证登录、权限管理环境搭建

    基础环境准备: JDK -> java version "1.8.0_101" MAVEN -> Apache Maven 3.5.0 1 导入依赖 mysql驱动 m ...

  3. 基于Thinkphp3.2的qq第三方oauth认证登录扩展类

    基于Thinkphp3.2的qq第三方oauth认证登录扩展类,由于腾讯oauth sdk写的太多,不能与thinkphp和好的结合,最终想法讲腾讯oauth sdk写成tp的扩展类先看代码,将代码保 ...

  4. No.2 CAS之SPNEGO+LDAP认证配置

    1.概述 本文先配置了SPNEGO认证,就是如果用户操作系统如果登陆了公司的Windows域,用户浏览器访问应用服务即可免登录. 然后如果不在域里的员工,用LDAP认证方式,输账号密码登陆. 参考文档 ...

  5. C#开发中Windows域认证登录2(扩展吉日嘎拉GPM系统)

    原文地址:http://www.cuiwenyuan.com/shanghai/post/Windows-AD-Logon-Intergrated-into-Jirigala-GPM-DotNet-B ...

  6. centos 6.4配置samba+ldap认证

    原文地址:http://www.centoscn.com/image-text/config/2015/0716/5866.html  1. 什么是samba Samba服务类似于windows上的共 ...

  7. 搭建harbor仓库、LDAP认证

    ldap: 192.168.199.177 c5game.com 宿主机:192.168.199.224 测试客户机:192.168.199.223 安装docker.docker-compose 访 ...

  8. C#开发中Windows域认证登录2016(扩展吉日嘎拉GPM系统V4.2)

    2013年搞公司的OA时,为了统一用户登录,将Windows AD的用户和OA的账号对接,OA用户名的规则就是使用Windows AD的用户名,格式举例:Troy.Cui,原理就是先进行域服务器的认证 ...

  9. 拦截器的作用之session认证登录和资源拦截

    背景: 在项目中我使用了自定义的Filter 这时候过滤了很多路径,当然对静态资源我是直接放过去的,但是,还是出现了静态资源没办法访问到springboot默认的文件夹中得文件.另外,经常需要判断当前 ...

随机推荐

  1. centos6.5 yum搭建安装linux+apache+mysql+php环境

    一.脚本YUM源安装: 1.yum install wget                                                     #安装下载工具wget2.wget ...

  2. JS高阶---闭包应用(自定义JS模块)

    [自定义JS模块] [闭包案例] (1)案例1 对应的模块文件 (2)案例2---使用匿名函数 对应的模块文件 案例2分析:因为内部函数引用了外部函数的变量,且存在嵌套关系,所以是闭包,分析结构图如下 ...

  3. ssh 到服务器然后输入中文保存到本地变成乱码

    很有可能是 默认的编码导致的 尝试执行 echo $LANG 如果是 en_US vim 输入中文有较大概率是 GBK 编码 尝试把这个加入到 ~/.bashrc export LANG=zh_CN. ...

  4. (day45)JavaScript

    目录 一.什么是JavaScript 二.注释 三.引入方式 (1)script标签内联 (2)script标签外联 四.变量 (一)变量声明 (二)命名规范 五.数据类型 (一)数值类型Number ...

  5. JDOJ 1927 求逆序对

    洛谷 P1908 逆序对 洛谷传送门 JDOJ 1927: 求逆序对 JDOJ传送门 题目描述 猫猫TOM和小老鼠JERRY最近又较量上了,但是毕竟都是成年人,他们已经不喜欢再玩那种你追我赶的游戏,现 ...

  6. Java中的 Invalid character constant(无效的字符常数)

    将双引号误写成单引号,会出现这个错误. 1 package dftpkg; 2 3 public class Test { 4 5 public static void main(String[] a ...

  7. Linux服务器惨遭挖矿

      昨天为了协助客户测试业务,帮客户开通了一台云主机,因为是测试环境所以密码设置的很简单:1qaz@WSX,今天登陆的是否发现密码认证不通过了,确定机器是被黑掉了,估计多半是被国外小哥入侵挖矿了,记录 ...

  8. 学习-angular 7入门

    1.安装脚手架:npm install -g @angular/cli 安装之后,输入命令 ng v: Package Version -------------------------------- ...

  9. chrome 模拟发送请求的方法

    chrome f12 看到了web页面的请求,有时候想修改一下参数重新执行一下怎么办? 如果是get方法.参数不多可以直接在浏览器中打开.否则post方法参数多时很多人会复制到postman中执行,但 ...

  10. luoguP4551最长异或路径

    P4551最长异或路径 链接 luogu 思路 从\(1\)开始\(dfs\)求出\(xor\)路径.然后根据性质\(x\)到\(y\)的\(xor\)路径就是\(xo[x]^xo[y]\) 代码 # ...