[英]Role-based authorization with ASP.NET Core 5.0
我无法定义我的管理员、公司、代理角色,因为
services.AddDefaultIdentity<IdentityUser>()
.AddRoles<IdentityRole>()
.AddEntityFrameworkStores<ApplicationDbContext>();
不工作或没有定义,它给了我一个错误
Error CS1061 'IServiceCollection' does not contain a definition for 'AddDefaultIdentity' and no accessible extension method 'AddDefaultIdentity' accepting a first argument of type 'IServiceCollection' could be found (are you missing a using directive or an assembly reference?)
这是我的 ConfigureServices 方法:
public void ConfigureServices(IServiceCollection services)
{
services.AddMvc();
services.AddControllersWithViews();
services.AddDbContext<TradeTurkDBContext>();
services.AddDefaultIdentity<IdentityUser>()
.AddRoles<IdentityRole>()
.AddEntityFrameworkStores<TradeTurkDBContext>();
services.AddAuthentication(CookieAuthenticationDefaults.AuthenticationScheme)
.AddCookie(x =>
{
...
});
services.AddMvc(config =>
{
...
});
}
这是我使用的库
using BL.TradeTurk;
using DAL.TradeTurk;
using Entities.TradeTurk;
using Microsoft.AspNetCore.Builder;
using Microsoft.AspNetCore.Hosting;
using Microsoft.EntityFrameworkCore;
using Microsoft.Extensions.Configuration;
using Microsoft.Extensions.DependencyInjection;
using Microsoft.Extensions.Hosting;
using Microsoft.AspNetCore.Authentication.Cookies;
using Microsoft.AspNetCore.Authorization;
using Microsoft.AspNetCore.Mvc.Authorization;
using Microsoft.AspNetCore.Http;
using Microsoft.AspNetCore.Identity;
using System.Security.Claims;
谁能告诉我我缺少哪一部分?
我查看了 Microsoft 源代码中的AddRoles部分,我的代码和它们的源代码没有什么不同。
这是该页面的 Microsoft 源代码。
我在 .net5 中使用自定义身份进行了如下操作:
public class AppUser : IdentityUser
{
}
public class AppRole : IdentityRole
{
}
public class AppUserRole : IdentityUserRole<string>
{
public virtual AppUser User { get; set; }
public virtual AppRole Role { get; set; }
}
public class ApplicationDbContext : IdentityDbContext<AppUser, AppRole, string, IdentityUserClaim<string>, AppUserRole, IdentityUserLogin<string>, IdentityRoleClaim<string>, IdentityUserToken<string>>
{
public ApplicationDbContext(DbContextOptions<ApplicationDbContext> options) : base(options)
{
}
protected override void OnModelCreating(ModelBuilder builder)
{
base.OnModelCreating(builder);
}
}
services.AddDbContext<ApplicationDbContext>(options => //...);
services.AddIdentity<AppUser, AppRole>(options => options.SignIn.RequireConfirmedAccount = true)
.AddEntityFrameworkStores<ApplicationDbContext>()
.AddDefaultUI()
.AddDefaultTokenProviders();
services.AddAuthorization(ops =>
{
ops.AddPolicy("RequireAdmins", policy => policy.RequireRole("Admins"));
});
services.AddRazorPages()
.AddRazorPagesOptions(ops =>
{
ops.Conventions.AuthorizeFolder("/", "RequireAdmins");
});
我认为问题在于管道中的身份验证和授权的顺序,身份验证应始终放在授权之前。 在 Configure 方法中更改中间件顺序,如下所示:-
public void Configure(IApplicationBuilder app, IWebHostEnvironment env)
{
if (env.IsDevelopment())
app.UseDeveloperExceptionPage();
else
app.UseExceptionHandler("/Home/Error");
app.UseStaticFiles();
app.UseRouting();
app.UseAuthentication();
app.UseAuthorization();
app.UseEndpoints(endpoints =>
{
endpoints.MapControllers();
endpoints.MapControllerRoute(
name: "default",
pattern: "{controller=Account}/{action=Login}/{id?}");
});
}
尝试使用 services.AddIdentityCore().AddRoles();
使用 Windows 身份验证对 ASP.NET Core 基于角色的授权进行故障排除
[英]Troubleshooting ASP.NET Core Role-based Authorization with Windows Authentication
ASP.NET Core 2.1 身份:基于角色的授权 -> 拒绝访问
[英]ASP.NET Core 2.1 Identity: Role-based authorization -> Access Denied
全栈应用中基于角色的 Active Directory 身份验证和授权(React.js + ASP.Net Core)
[英]Role-based Active Directory authentication and authorization in full stack app (React.js + ASP.Net Core)
在 ASP.NET Core 中使用基于角色的身份验证是否可以使用 Ajax?
[英]Using role-based authentication in ASP.NET Core is ok with using Ajax?
有没有办法在 ASP.NET Core Web API 中添加基于角色的身份验证?
[英]Is there a way to add role-based authentication in ASP.NET Core Web API?
无法使用 ASP.NET Core 标识从基于角色的 HttpGet 请求中列出数据
[英]Unable to list data from Role-based HttpGet request using ASP.NET Core identity
基于角色的授权属性在 ASP.NET Core MVC 中不起作用
[英]Role based authorization attribute not working in ASP.NET Core MVC
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.