堆栈内存溢出
  繁体   English   中英

尝试对 ASP.NET Core 3.1 使用多个身份验证方案时出现异常

[英]Exceptions when trying to use multiple authentication schemes with ASP.NET Core 3.1

 原文  2021-04-12 21:20:38       c#/ asp.net-core/ authentication/ .net-core/ jwt

问题描述

我正在尝试使用 ASP.NET Core 3.1 添加多个身份验证方案,并在尝试向服务器发送不记名令牌时遇到此问题:

System.InvalidOperationException: No authenticationScheme was specified, and there was no DefaultChallengeScheme found. The default schemes can be set using either AddAuthentication(string defaultScheme) or AddAuthentication(Action<AuthenticationOptions> configureOptions).
   at Microsoft.AspNetCore.Authentication.AuthenticationService.ChallengeAsync(HttpContext context, String scheme, AuthenticationProperties properties)
   at Microsoft.AspNetCore.Authorization.AuthorizationMiddleware.Invoke(HttpContext context)
   at Microsoft.AspNetCore.Authentication.AuthenticationMiddleware.Invoke(HttpContext context)
   at NWebsec.AspNetCore.Middleware.Middleware.CspMiddleware.Invoke(HttpContext context)
   at NWebsec.AspNetCore.Middleware.Middleware.MiddlewareBase.Invoke(HttpContext context)
   at NWebsec.AspNetCore.Middleware.Middleware.MiddlewareBase.Invoke(HttpContext context)
   at NWebsec.AspNetCore.Middleware.Middleware.MiddlewareBase.Invoke(HttpContext context)
   at NWebsec.AspNetCore.Middleware.Middleware.MiddlewareBase.Invoke(HttpContext context)

以下是相关代码:

            services.AddAuthentication(options =>
            {
                options.DefaultAuthenticateScheme = JwtBearerDefaults.AuthenticationScheme;
                options.DefaultChallengeScheme = JwtBearerDefaults.AuthenticationScheme;
                options.DefaultScheme = JwtBearerDefaults.AuthenticationScheme;
            })
            .AddJwtBearer("Custom", options =>
            {
                options.SaveToken = true;
                options.RequireHttpsMetadata = true;
                options.TokenValidationParameters = new TokenValidationParameters
                {
                    ValidateIssuerSigningKey = true,
                    IssuerSigningKey = key,
                    ValidateAudience = false,
                    ValidateIssuer = false
                };
            })
            .AddJwtBearer("Keycloak", options =>
            {
                options.Authority = "http://localhost:8080/auth/realms/test";
                options.SaveToken = true;
                options.RequireHttpsMetadata = false;
                options.TokenValidationParameters = new TokenValidationParameters
                {
                    ValidateIssuerSigningKey = true,
                    IssuerSigningKey = key,
                    ValidateAudience = false,
                    ValidateIssuer = false
                };
            });

            services.AddAuthorization(options =>
            {
                var authorizationPolicy = new AuthorizationPolicyBuilder()
                  .AddAuthenticationSchemes(JwtBearerDefaults.AuthenticationScheme, "Custom", "Keycloak")
                  .RequireAuthenticatedUser().Build();
                options.AddPolicy("Bearer", authorizationPolicy);
            });

任何人都能够看到我在这里做错了什么? 如果我只使用一个,这两种方案都可以单独工作。

1 个解决方案

解决方案1
 1  2021-04-12 21:33:57

我找到了解决方案。

我需要添加

    [Authorize(AuthenticationSchemes = "Custom, Keycloak")]

在我的基地 controller。

暂无
暂无

声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.

相关问题 在 ASP.NET Core 3.1 中使用多个身份验证方案? ASP.NET Core中的多种身份验证方案 ASP.NET core 2.2:当配置了多个身份验证方案时,ChallengeResult 的预期行为是什么? 如何在 ASP.NET Core 3.1 中启用多重身份验证? 使用两个JWT Authentication Scheme,ASP.NET Core 3.1 ASP.NET Core 6:添加具有多个授权策略的多个身份验证方案以及依赖注入 ASP.NET Core 两种身份验证方案(JWT + CookieAuth) ASP.NET 核心 MVC/WebAPI 认证方案加匿名 当客户端忽略ASP.NET Core中任何已启用的身份验证方案时,如何返回401 HTTP状态? 在 ASP.NET Core 3.1 中为 Singleton 使用多项服务
相关标签
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM