简体   繁体   English

ASP.NET 5 OpenIdConnect刷新令牌

[英]ASP.NET 5 OpenIdConnect Refresh_Token

i'm trying to create a token with refresh_token 我正在尝试使用refresh_token创建token

followed this post answer by @Shaun Luttin @Shaun Luttin关注了这篇帖子

public sealed class AuthorizationProvider : OpenIdConnectServerProvider
    public override Task ValidateClientAuthentication(
        ValidateClientAuthenticationContext context)
        // Since there's only one application and since it's a public client
        // (i.e a client that cannot keep its credentials private), call Skipped()
        // to inform the server the request should be accepted without 
        // enforcing client authentication.

        return Task.FromResult(0);

    public override Task GrantResourceOwnerCredentials(
        GrantResourceOwnerCredentialsContext context)
        // Validate the credentials here (e.g using ASP.NET Identity).
        // You can call Rejected() with an error code/description to reject
        // the request and return a message to the caller.

        var identity =
            new ClaimsIdentity(OpenIdConnectServerDefaults.AuthenticationScheme);
        identity.AddClaim(ClaimTypes.NameIdentifier, "todo");

        // By default, claims are not serialized in the access and identity tokens.
        // Use the overload taking a "destination" to make sure your claims
        // are correctly inserted in the appropriate tokens.
        identity.AddClaim("urn:customclaim", "value", "token id_token");

        var ticket = new AuthenticationTicket(
            new ClaimsPrincipal(identity),
            new AuthenticationProperties(),

        // Call SetResources with the list of resource servers
        // the access token should be issued for.
        ticket.SetResources(new[] { "resource_server_1" });

        // Call SetScopes with the list of scopes you want to grant
        // (specify offline_access to issue a refresh token).
        ticket.SetScopes(new[] { "profile", "offline_access" });


        return Task.FromResult<object>(null);

when i request for token like this 当我要求这样的令牌时

POST http://localhost:50000/connect/token HTTP/1.1
User-Agent: Fiddler
Host: localhost:50000
Content-Length: 61
Content-Type: application/x-www-form-urlencoded

grant_type = password & username = my_username & password = my_password

i'm getting token like this 我得到这样的令牌

  "resource": "resource_server_1",
  "scope": "profile offline_access",
  "token_type": "bearer",
  "access_token": "eyJh...W2rA",
  "expires_in": "3600"

its working fine but there is no refresh_token property init. 它的工作正常,但没有refresh_token属性init。 how can i get that? 我该怎么办?

i dont know for some reason specifying 我由于某种原因不知道

ticket.SetScopes(new[] { "profile", "offline_access" });

manually is not working, so i removed this line and added scope parameter to my request header, now i'm getting response with refresh_token 手动不起作用,所以我删除了这一行,并向我的请求标头中添加了scope参数,现在我得到了带有refresh_token响应

POST http://localhost:50000/connect/token HTTP/1.1
User-Agent: Fiddler
Host: localhost:50000
Content-Length: 61
Content-Type: application/x-www-form-urlencoded

grant_type = password & username = my_username & password = my_password & scope = offline_access

so now the response is 所以现在的回应是

  "resource": "resource_server_1",
  "scope": "profile offline_access",
  "token_type": "bearer",
  "access_token": "eyJh...W2rA",
  "refresh_token": "CfDJ8OV0Bu....AoUWPE"
  "expires_in": "3600"

声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.

粤ICP备18138465号  © 2020-2024 STACKOOM.COM