stackoom
  简体   繁体   中英

Combining cookie and token authentication in ASP.NET Core

 原文  2019-02-19 23:19:52       asp.net/ asp.net-mvc/ authentication/ asp.net-web-api/ asp.net-core

Question

I've REST services (Web API) and admin panel (MVC) in one project on ASP.NET Core 2.1. I want to secure my API with JWT token, and my MVC pages with cookies. Can I combinate these two authentication ways. How to configure my Startup.cs, Authorize attribute and sign in functionality.

1 answers

solution1
 1  2019-02-25 05:56:58

I suppose you should use an OAuth 2.0 framework. please check IdentityServer4 it enables many features in your applications.

IdentityServer is middleware that adds the spec compliant OpenID Connect and OAuth 2.0 endpoints to an arbitrary ASP.NET Core application.

Typically, you build (or re-use) an application that contains a login and logout page (and maybe consent - depending on your needs), and the IdentityServer middleware adds the necessary protocol heads to it, so that client applications can talk to it using those standard protocols.

IdentityServer4 如何提供帮助

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question Custom ASP.NET Core Cookie Authentication setting asp.net CORE 2 authentication cookie while using bearer token authentication ASP.Net Core 2 authentication write cookie to localhost different port Asp.Net Core 3.1 Cookie Authentication loop to login page Asp.net Core 2.0 Custom Cookie based authentication Logout Action with Asp.Net Core Cookie Authentication Using the Authorize Attribute with Custom Cookie Authentication in ASP.NET Core How to logout all users in ASP.NET Core cookie authentication? Cookie authentication issues on page request ASP.NET Core & Identity ASP .NET Core cookie authentication
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM