stackoom
  简体   繁体   中英

How to use login page hosted in .Net framework 4.6 application to authenticate for IdentityServer4 application on .Net Core 3.1?

 原文  2020-09-17 23:39:01       c#/ asp.net/ cookies/ identityserver4/ asp.net-core-3.1

Question

We have a current login page on a .Net framework 4.6 application. We are building a new .Net Core 3.1 IdentityServer4 application primarily for issuing tokens, but during the code authentication flow we want to redirect to a login page which is hosted in our current .Net framework 4.6 application.

The redirect for login page from IDServer app to .Net framework 4.6 app works fine, but after the .Net framework 4.6 app creates and sets the cookie, IdentityServer4 doesn't seem to be responding to this cookie.

Does anyone know how to achieve logging-in in the .Net framework 4.6 application and then redirecting back to IdentityServer and handling the tokens after the login?

In IdentityServer, the following code makes it possible to redirect to .Net framework 4.6 application:

services.AddIdentityServer(options =>
{
    options.UserInteraction.LoginUrl = "https://localhost:44352/login/";
    options.UserInteraction.LoginReturnUrlParameter = "returnUrl";
})

But after the app running on "https://localhost:44352/login/" sets the identity cookie and redirects back to IdentityServer4 with the provided returnUrl, the IdentityServer4 is not reading that cookie. We've even tried to create the Identity cookie using another .Net Core 3.1 application using Microsoft's Identity package, which works when doing it in IdentityServer4, but it doesn't work when creating this cookie in another application and passing it to IdentityServer4.

2 answers

solution1
 0  2020-09-18 03:11:55

I haven't tried that but you can do following things (In general case)

  1. Cookies domain and name should be same at both platforms (web apps)
  2. Machine Key must be same on both apps

solution2
 0  2020-09-20 10:16:03

Your applications (ASP.NET Core and classic ASP) and IdentityServer does not share the same cookies.

IdentityServer issues their own cookies and session cookies can't be read between ASP.NET and ASP.NET core (they are protected differently).

In general, I think to get the single-signon experience both applications (ASP.NET and ASP.NET core) needs to authenticate indepedently to IdentityServer and get its own set of tokens. But the user only needs to login once to IdentityServer beause after the first login, the IdentityServer will using its cookie remember who you are.

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question ASP.NET Core IdentityServer4 - How can I use Client Login Page instead of IdentityServer Login Page? IdentityServer4 from .net framework 4.6 How do I use .NET Core's IdentityServer4 on .NET 4.6? Razor .net core 3.1 with IdentityServer4 How to migrate from .NET Framework 4.6 to .NET Core 3.1 issue - How to avoid showing login page if already logged with asp net core Identityserver4? I want to Update User Claims in IdentityServer4 (.NET Core 3.1) Authorize attribute not working with IdentityServer4 and .NET Core 3.1 IdentityServer4 LocalApi with custom policy in .NET Core 3.1 Cannot sign out the OpenIdConnect authentication of identityserver4 on ASP.NET Core 2 application
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM