堆栈内存溢出
  繁体   English   中英

Azure AD中基于JWT令牌的身份验证

[英]JWT Token based Authentication in Azure AD

 原文  2017-11-27 13:18:27       asp.net-mvc/ asp.net-web-api/ jwt/ azure-active-directory/ asp.net-core-2.0

问题描述

在验证Azure AD颁发的令牌时,im低于startup.css中的错误

JwtBearerAppBuilderExtensions.UseJwtBearerAuthentication(IA‌pplicationBuilder,JwtBearerOptions)'已过时:'see go.microsoft.com/fwlink/?linkid=845470';

我的代码是 

 app.UseJwtBearerAuthentication(new JwtBearerOptions
            {
                AutomaticAuthenticate = true,
                AutomaticChallenge = true,
                Authority = String.Format(Configuration["AzureAd:AadInstance"], Configuration["AzureAD:Tenant"]),
                Audience = Configuration["AzureAd:Audience"],
            });

有什么建议吗,我是Azure和Web API的新手吗? 谢谢

2 个解决方案

解决方案1
 0  2017-11-28 14:05:32

使用nuget包Microsoft.Owin.Security.ActiveDirectory代替: 

app.UseWindowsAzureActiveDirectoryBearerAuthentication(new WindowsAzureActiveDirectoryBearerAuthenticationOptions
{
    TokenValidationParameters = new TokenValidationParameters
    {
        ValidAudience = ConfigurationManager.AppSettings["AzureAd:Audience"]
    },
    Tenant = ConfigurationManager.AppSettings["AzureAd:AADInstance"]
});

解决方案2
 0 已采纳  2017-12-01 14:53:07

并使用下面的代码,我现在就可以正常工作了。 

 public void ConfigureServices(IServiceCollection services)
        {

            services.AddAuthentication(options =>
            {
                options.DefaultScheme = JwtBearerDefaults.AuthenticationScheme;
            })
          .AddJwtBearer(jwtOptions =>
          {
              jwtOptions.Authority = String.Format(Configuration["Logging:AzureAd:AadInstance"], Configuration["Logging:AzureAD:Tenant"]);
              jwtOptions.Audience = Configuration["Logging:AzureAd:Audience"];
              jwtOptions.Events = new JwtBearerEvents
              {
                  OnAuthenticationFailed = AuthenticationFailed
              };
          });

            services.AddMvc();
        }

public void Configure(IApplicationBuilder app, IHostingEnvironment env, ILoggerFactory loggerFactory)
        {

            loggerFactory.AddConsole(Configuration.GetSection("Logging"));
            loggerFactory.AddDebug();

            app.UseAuthentication();
            app.UseMvc();
        }

        private Task AuthenticationFailed(AuthenticationFailedContext arg)
        {
            // For debugging purposes only!
            var s = $"AuthenticationFailed: {arg.Exception.Message}";
            arg.Response.ContentLength = s.Length;
            arg.Response.Body.Write(Encoding.UTF8.GetBytes(s), 0, s.Length);
            return Task.FromResult(0);
        }

暂无
暂无

声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.

相关问题 JWT令牌和Owin身份验证 Forms 和 Azure AD 认证 ASP.NET Core MVC向Azure AD验证用户,然后创建JWT Bearer Token以调用Web API 获取来宾的Azure AD令牌 Azure SaaS站点-AD身份验证 应用程序之间的Azure AD身份验证 AllowAnonymous无法使用azure广告验证 MVC中的个人身份验证和Azure AD 将 Azure AD 身份验证添加到现有 .Net MVC 应用程序:id_token 未被验证 添加基于策略的授权会跳过JWT承载令牌身份验证检查吗?
相关标签
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM