堆栈内存溢出
  繁体   English   中英

如何将 IdentityServer Bearer Token Authentication 从 asp.net 迁移到 .net core 3.1

[英]How to migrate IdentityServer Bearer Token Authentication from asp.net to .net core 3.1

 原文  2021-06-27 17:13:20       c#/ asp.net-core

问题描述

下面是现有的 asp.net 框架代码,我尝试了多种方法将相同的代码转换为 .net 核心,但它没有按预期工作。 请提出一些解决方案。

public void ConfigureAuth(IAppBuilder app, IntrospectionEndpointHandler introspectionEndpointHandler)
{
  //Configure the db context and user manager to use a single instance per request
  app.CreatePerOwinContext(UserDbContext.Create);
  app.CreatePerOwinContext<UserManager>(UserManager.Create);
  app.CreatePerOwinContext<RoleManager>(RoleManager.Create);
  JwtSecurityTokenHandler.InboundClaimTypeMap.Clear();

  // I am not able to find equlant method for UseIdentityServerBearerTokenAuthentication in . net core 
  app.UseIdentityServerBearerTokenAuthentication(new IdentityServerBearerTokenAuthenticationOptions
  {
    Authority = ConfigurationManager.AppSettings["identityServerUrl"],
    ValidationMode = ValidationMode.ValidationEndpoint,
    IntrospectionHttpHandler = introspectionEndpointHandler,
    BackchannelHttpHandler = introspectionEndpointHandler,
    ClientId = ConfigurationManager.AppSettings["ResourceName"],
    ClientSecret = ConfigurationManager.AppSettings["Secret"],
    RequiredScopes = new[]
    {
       ConfigurationManager.AppSettings["testScope"]
    }
  });

  app.Use<ServiceProvisionMiddleware>();
}

1 个解决方案

解决方案1
 0  2021-06-27 21:17:28

我认为最好的办法是将Microsoft.AspNetCore.Authentication.JwtBearerMicrosoft.IdentityModel.Tokens一起安装,当然还有Microsoft.AspNetCore.Identity.EntityFrameworkCore

可能等效的方法(尽管语义不完全相同)是AddJwtBearer

当我在 ASPnet 核心中设置 Jwt 时,我这样做:

启动文件

public void ConfigureServices(IServiceCollection services){
  // (...)

  // identity
  services.AddIdentity<IdentityUser, IdentityRole>()
          .AddEntityFrameworkStores<IdentityDbContext<IdentityUser>>()
          .AddDefaultTokenProviders();
        
  // authentication
  services.AddAuthentication( options => {
           options.DefaultAuthenticateScheme = JwtBearerDefaults.AuthenticationScheme;
           options.DefaultChallengeScheme = JwtBearerDefaults.AuthenticationScheme;
           options.DefaultScheme = JwtBearerDefaults.AuthenticationScheme;
        }).AddJwtBearer( options => {
           options.Authority = "my-authority",
           options.BackchannelHttpHandler = myCustomHttpHandler,
           options.RequireHttpsMetadata = false;
           options.TokenValidationParameters = new TokenValidationParameters {
               ValidateIssuerSigningKey = true,
               IssuerSigningKey = "my-super-secure-secret",
               ValidateIssuer = true,
               ValidIssuer = "my-issuer",
               ValidateAudience = true,
               ValidAudience = "my-audience"
           };
       });

暂无
暂无

声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.

相关问题 ASP.NET Core 中的承载令牌身份验证 不记名令牌出现 401 错误 - asp.net 核心 3.1 ASP.NET Core 3.1 不授权不记名令牌 如何在 ASP.NET Core 3.1 生产中配置 IdentityServer 如何实现允许承载令牌身份验证或 api 密钥身份验证的 ASP.Net Core API Controller Asp.Net Core 2 验证不记名令牌 如何在 Asp.Net Core 6 中向类型化的 HttpClient 添加不记名令牌身份验证 JWT 不记名令牌不适用于 ASP.Net Core 3.1 + Identity Server 4 使用承载令牌身份验证时设置asp.net CORE 2身份验证Cookie ASP.NET Core 3.1 MVC AddOpenIDConnect 与 IdentityServer3
相关标签
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM