Exceptions when trying to use multiple authentication schemes with ASP.NET Core 3.1
Question
I'm trying to add multiple authentication schemes with ASP.NET Core 3.1 and am running into this issue when attempting to send a bearer token to the server:
System.InvalidOperationException: No authenticationScheme was specified, and there was no DefaultChallengeScheme found. The default schemes can be set using either AddAuthentication(string defaultScheme) or AddAuthentication(Action<AuthenticationOptions> configureOptions).
at Microsoft.AspNetCore.Authentication.AuthenticationService.ChallengeAsync(HttpContext context, String scheme, AuthenticationProperties properties)
at Microsoft.AspNetCore.Authorization.AuthorizationMiddleware.Invoke(HttpContext context)
at Microsoft.AspNetCore.Authentication.AuthenticationMiddleware.Invoke(HttpContext context)
at NWebsec.AspNetCore.Middleware.Middleware.CspMiddleware.Invoke(HttpContext context)
at NWebsec.AspNetCore.Middleware.Middleware.MiddlewareBase.Invoke(HttpContext context)
at NWebsec.AspNetCore.Middleware.Middleware.MiddlewareBase.Invoke(HttpContext context)
at NWebsec.AspNetCore.Middleware.Middleware.MiddlewareBase.Invoke(HttpContext context)
at NWebsec.AspNetCore.Middleware.Middleware.MiddlewareBase.Invoke(HttpContext context)
Here's the relevant code:
services.AddAuthentication(options =>
{
options.DefaultAuthenticateScheme = JwtBearerDefaults.AuthenticationScheme;
options.DefaultChallengeScheme = JwtBearerDefaults.AuthenticationScheme;
options.DefaultScheme = JwtBearerDefaults.AuthenticationScheme;
})
.AddJwtBearer("Custom", options =>
{
options.SaveToken = true;
options.RequireHttpsMetadata = true;
options.TokenValidationParameters = new TokenValidationParameters
{
ValidateIssuerSigningKey = true,
IssuerSigningKey = key,
ValidateAudience = false,
ValidateIssuer = false
};
})
.AddJwtBearer("Keycloak", options =>
{
options.Authority = "http://localhost:8080/auth/realms/test";
options.SaveToken = true;
options.RequireHttpsMetadata = false;
options.TokenValidationParameters = new TokenValidationParameters
{
ValidateIssuerSigningKey = true,
IssuerSigningKey = key,
ValidateAudience = false,
ValidateIssuer = false
};
});
services.AddAuthorization(options =>
{
var authorizationPolicy = new AuthorizationPolicyBuilder()
.AddAuthenticationSchemes(JwtBearerDefaults.AuthenticationScheme, "Custom", "Keycloak")
.RequireAuthenticatedUser().Build();
options.AddPolicy("Bearer", authorizationPolicy);
});
Anyone able to see what I'm doing wrong here? Both schemes work individually if I just use one.
1 answers
solution1
1 2021-04-12 21:33:57
I found a solution.
I needed to add
[Authorize(AuthenticationSchemes = "Custom, Keycloak")]
In my base controller.
The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.
Related Question
Using multiple authentication schemes in ASP.NET Core 3.1?
Multiple authentication schemes in ASP.NET Core
ASP.NET core 2.2: what is the expected behaviour of ChallengeResult when there are multiple authentication schemes configured?
How to enable multiple authentication in ASP.NET Core 3.1?
Use two JWT Authentication Scheme, ASP.NET Core 3.1
ASP.NET Core 6 : add multiple authentication schemes with multiple authorization policies along with dependency injection
ASP.NET Core Two Authentication Schemes (JWT + CookieAuth)
ASP.NET Core MVC/WebAPI Authentication Schemes plus Anonymous
How to return 401 HTTP status when client omits any of enabled authentication schemes in ASP.NET Core?
Use Multiple Services for Singleton in ASP.NET Core 3.1
Related Tags