堆栈内存溢出
  简体   繁体   English

闲置30分钟后,使用ADFS身份验证登录的用户将重定向到ADFS服务器

[英]User logged in using ADFS auth is getting redirected to ADFS server after 30 minutes of idle time

 原文  2017-05-15 22:52:09       c#/ asp.net-mvc/ asp.net-mvc-4/ asp.net-web-api/ adfs

问题描述

Web application is using ADFS for authentication.After the successfull login of the application , I kept the application idle for about 30 minutes. Web应用程序正在使用ADFS进行身份验证。成功登录应用程序后,我使应用程序保持空闲状态约30分钟。 Now when the user tries to go to a page , the application redirects to the ADFS portal and gets authenticated. 现在,当用户尝试转到页面时,应用程序将重定向到ADFS门户并获得身份验证。 I have set the persistenSessionLifeTime for 60 days.I could see the expiration time of FedAuth Tokens correctly in the chrome developer tools. 我将persistenSessionLifeTime设置为60天。我可以在chrome开发人员工具中正确看到FedAuth令牌的过期时间。 Please find the configuration below. 请在下面找到配置。 Why is it going after every 30 minutes ? 为什么每30分钟要进行一次? I know some the Token issued by ADFS is getting expired. 我知道一些由ADFS发行的令牌即将过期。 Could you please help me to solve this. 您能帮我解决这个问题吗? 

    <system.identityModel>
    <identityConfiguration saveBootstrapContext="true">
      <claimsAuthenticationManager type="TruckDataWebAPI.Controllers.AuthenticationManager,TruckDataWebAPI" />
      <audienceUris>
        <add value="xxxxxxxxxxxxxxxx" />
      </audienceUris>
      <issuerNameRegistry type="System.IdentityModel.Tokens.ConfigurationBasedIssuerNameRegistry, System.IdentityModel, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089">
        <trustedIssuers>
          <add thumbprint="xxxxxxxxxxxxxxxxx" name="xxxxxxxxxxxxxxxxxxx" />
          <add thumbprint="xxxxxxxxxxxxxxxxxx" name="xxxxxxxxxxxxxxxxxxxxx"/>
        </trustedIssuers>
      </issuerNameRegistry>
    </identityConfiguration>
  </system.identityModel>
  <system.identityModel.services>
    <federationConfiguration>
      <wsFederation  passiveRedirectEnabled="false" issuer="xxxxxxxxxxxxxxxxx" persistentCookiesOnPassiveRedirects="true" realm="xxxxxxxxxxxxxxxx" reply="xxxxxxxxxxxxxxx" requireHttps="true"  />
      <cookieHandler  mode="Default" requireSsl="true" persistentSessionLifetime="60.0:0:0" />
    </federationConfiguration>
  </system.identityModel.services>

1 个解决方案

解决方案1
 0 已采纳  2017-05-16 19:10:50

There are two tokens; 有两个令牌。 the ADFS one and the RP (application) one. ADFS 1和RP(应用程序)1。

You need to set both. 您需要同时设置两者。

Also, ensure the ADFS value is smaller so that when the RP token times out, the ADFS will also so user will be asked to authenticate again. 另外,请确保ADFS值较小,以便当RP令牌超时时,ADFS也将要求用户再次进行身份验证。

Good overview here . 这里很好的概述。

暂无
暂无

声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.

相关问题 具有Windows身份验证/当前登录用户的C#ADFS SAML令牌 - C# ADFS SAML token with Windows Auth / Current logged in user ajax 上的 CORS 错误被重定向到 ADFS STS 服务器 - CORS error on ajax getting redirected to ADFS STS server ADFS为登录用户获取所有角色 - ADFS get all roles for a Logged in user 从 ADFS 声明授权 - Claim auth from ADFS 从adfs服务器获取安全令牌时出错 - Error getting security token from adfs server 使用ADFS身份验证以其他用户身份登录 - Login as different user using ADFS Authentication 使用WIF和ADFS检索有关用户的声明 - Using WIF & ADFS to retrieve claims about a user 使用ADFS时在ELMAH中丢失用户信息 - Losing USER information in ELMAH when using ADFS 活动身份验证方案。 如何使用合作伙伴/用户ADFS的令牌在家庭/资源ADFS上发行令牌 - Active auth scenario. How to issue token on home/resource ADFS using token from partner/users ADFS C#Web服务-闲置30分钟后,静态成员变量将变为空 - C# web service - static member variable is becoming empty after 30 minutes of idle time
相关标签
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM