stackoom
  简体   繁体   中英

Add custom roles for blazor Server side with AzureAd

 原文  2021-12-13 15:14:07       c#/ azure/ asp.net-core/ blazor-server-side

Question

I have a middleware that adds a custom roles to the user after login by using AzureAd , it works fine but I have a problem that after for example I logged in and someone also logged in after me, this user still has the same roles that I added for me, I didn't understand why blazor saving this roles for different user even after signing out and how can that happen and how can I do it in the right way
This is the middleware

public class RoleHandler
{
    private readonly RequestDelegate _next;
    private List<string> Roles { get; set; }

    public RoleHandler(RequestDelegate Next)
    {
        _next = Next;
    }

    public async Task InvokeAsync(HttpContext context, IGenericHttpClient<Role> httpClient)
    {
        if (Roles == null || Roles.Count == 0)
        {
            Roles = await GetRole(context, httpClient);
        }
        else
        {
            foreach (var role in Roles)
            {
                //Add roles to this user, in this case user can be admin or developer ...
                context.User.Identities.FirstOrDefault().AddClaim(new Claim(ClaimTypes.Role, role));
            }
        }
        await _next(context);
    }

    public async Task<List<string>> GetRole(HttpContext context, IGenericHttpClient<Role> httpClient)
    {
        List<string> rolesList = new();
        //Get role from api like [guid, admin]
        var appUserRoles = await httpClient.GetJsonAsync("/api/roles/search?id=XXX");
        //Get role from user as guid
        var RolesString = context.User.Claims
                .Select(c => c.Value).ToList();

        foreach (var appRole in appUserRoles)
        {
            foreach (var role in RolesString)
            {
                if (appRole.RoleString == role)
                {
                    rolesList.Add(appRole.Name);
                }
            }
        }
        return rolesList;
    }
}

1 answers

solution1
 0  2021-12-14 09:30:15

You should use AddScoped when you register HttpClient service in Startup.cs file.

Related Post:

1. AddTransient, AddScoped and AddSingleton Services Differences

2. Cannot Consume Scoped Service From Singleton – A Lesson In ASP.NET Core DI Scopes

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question Custom blazor server-side authentication Using Active Directory and Windows Authentication to give custom roles in Blazor Server Blazor (Server-Side) with Organizational/Office 365/Microsoft Account Authentication; How to do Local Multiple Roles? Using Blazor server side IJSRuntime ignores custom json serializer in server side blazor project Custom Middleware is causing Blazor Server-side page to stop working How to add logging to Blazor Server-side component? How to add controller (not view) support to a server-side Blazor project Blazor WebAssembly with AzureAD Run Blazor WASM as Blazor Server-Side
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM