[英]Identityserver and SQL server Database
we are looking for brand new implementation for Identityserver4, I wnet thru the documentation and install the Project on VS2017 and DB in sqlserver. 我们正在寻找Identityserver4的全新实现,我通过文档访问并在VS2017和sqlserver中的DB上安装了Project。
Database is created with the default migration script provided for bot ConfigurationData as well as Operational DAta. 使用为机器人ConfigurationData提供的默认迁移脚本以及Operational DAta创建数据库。 I am very much confused , where the user will be how the clients will be add etc? 我很困惑,用户将如何添加客户端等? Also in the startup the default ASPNEtIdentity is add, but in database there is no ApplicationUser table, so where the userdata will be? 同样在启动时,默认的ASPNEtIdentity被添加,但是在数据库中没有ApplicationUser表,那么用户数据将在哪里? My requirement is simple - User will be aple to login to application by his credentials(or may be by 3rd party application) and will use the application or API will directly use Identity server to with clientcredential scope, 我的要求很简单-用户将足以通过其凭据(或可能由第三方应用程序)登录到应用程序,并且将使用该应用程序或API将直接使用身份服务器进行客户端凭据范围的访问,
Here please do let me know: 请在此告诉我:
First off, IdentityServer4 on it's own does not handle users or authentication thereof - you either need to use ASP.Net Identity and the integration library that hooks it up to IdentityServer4 or build all of that stuff yourself. 首先,IdentityServer4本身无法处理用户或其身份验证-您要么需要使用ASP.Net Identity以及将其连接到IdentityServer4的集成库,要么自己构建所有这些东西。
So to sum up: 所以总结一下:
[ScopeAuthorize("my.api")] public MyResult ApiAction() { ... }
). 默认情况下,不记名令牌中间件将验证受众(ApiResource.Name),但我更喜欢使用过滤器(例如[ScopeAuthorize("my.api")] public MyResult ApiAction() { ... }
在更精细的控制器或操作级别上强制作用域[ScopeAuthorize("my.api")] public MyResult ApiAction() { ... }
)。 This filter will check that the specified scope is defined in the set of claims in the ClaimsPrincipal). 此过滤器将检查是否在ClaimsPrincipal中的一组索赔中定义了指定的范围。
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.