堆棧內存溢出
  簡體   English   中英

Blazor @attribute [Authorize] 標簽不起作用

[英]Blazor @attribute [Authorize] tag is not working

 原文  2019-10-11 08:44:51       authentication/ asp.net-core/ authorization/ blazor

問題描述

我有一個工作 .NET Core 3.0 MVC 網站,使用 AzureAD 進行身份驗證,這一切都很好。 我已經開始將一些前端頁面遷移到 Blazor(在同一個項目中),但無法使身份驗證工作。

I have added the @attribute [Authorize] tag to the top of Index.razor but I do not get redirected to Azure to login as I would do when adding it to a standard ASP.NET MVC Controller.

啟動.ConfigureServices

services.AddAuthentication(options =>
{
    options.DefaultAuthenticateScheme = CookieAuthenticationDefaults.AuthenticationScheme;
    options.DefaultChallengeScheme = OpenIdConnectDefaults.AuthenticationScheme;
    options.DefaultSignInScheme = CookieAuthenticationDefaults.AuthenticationScheme;
})
.AddCookie()
.AddOpenIdConnect(options =>
{
    Configuration.GetSection("OpenIdConnect").Bind(options);
});
services.AddAuthorizationCore(options =>
{
    options.AddPolicy(Policies.AccessRole, Policies.IsAccessPolicy());
    options.AddPolicy(Policies.AdminRole, Policies.IsAdminPolicy());
});

啟動.配置

app.UseAuthentication();
app.UseAuthorization();

索引.razor

@page "/"
@attribute [Authorize(Policy = Policies.AccessRole)]

政策

public static class Policies
{
    public const string AccessRole = "Access";
    public const string AdminRole = "Admin";

    public static AuthorizationPolicy IsAccessPolicy()
    {
        return new AuthorizationPolicyBuilder().RequireAuthenticatedUser()
                                               .RequireRole(AccessRole)
                                               .Build();
    }

    public static AuthorizationPolicy IsAdminPolicy()
    {
        return new AuthorizationPolicyBuilder().RequireAuthenticatedUser()
                                               .RequireRole(AdminRole)
                                               .Build();
    }
}

如果我導航到 MVC 頁面,我將通過 AzureAD 進行身份驗證,如果我隨后返回 Blazor 頁面,我可以成功使用以下內容

<AuthorizeView Policy="@Policies.AccessRole">
    <p>Is in Access policy.</p>
</AuthorizeView>

<AuthorizeView Policy="@Policies.AdminRole">
    <p>Is in Admin policy.</p>
</AuthorizeView>

總而言之,我的 Blazor 頁面在使用 [Authorize] 屬性時不會自動發出身份驗證質詢。

有誰知道我做錯了什么?

更新

按照設計https://github.com/aspnet/AspNetCore/issues/13709

作為一種解決方法,我添加了一個組件以重定向到登錄頁面

App.razor

<Router AppAssembly="@typeof(Program).Assembly">
    <Found Context="routeData">
        <AuthorizeRouteView RouteData="@routeData" DefaultLayout="@typeof(MainLayout)">
            <NotAuthorized>
                <AuthChallenge></AuthChallenge>
            </NotAuthorized>
        </AuthorizeRouteView>
    </Found>
    <NotFound>
        <CascadingAuthenticationState>
            <LayoutView Layout="@typeof(MainLayout)">
                <p>Sorry, there's nothing at this address.</p>
            </LayoutView>
        </CascadingAuthenticationState>
    </NotFound>
</Router>

AuthCallenge.razor

@inject NavigationManager Navigation

@code {
    protected override void OnInitialized()
    {
        Navigation.NavigateTo("/Account/SignIn", true);
    }
}

2 個解決方案

解決方案1
 13  2019-10-11 14:29:57

查看您的 App.razor 文件。 你使用 RouteView 還是 AuthorizeRouteView?

您需要按照“ASP.NET Core Blazor 身份驗證和授權”頁面中的說明定義 AuthorizeRouteView。

<Router AppAssembly="@typeof(Program).Assembly">
<Found Context="routeData">
    <AuthorizeRouteView RouteData="@routeData" DefaultLayout="@typeof(MainLayout)">
        <NotAuthorized>
            <h1>Sorry</h1>
            <p>You're not authorized to reach this page.</p>
            <p>You may need to log in as a different user.</p>
        </NotAuthorized>
        <Authorizing>
            <h1>Authentication in progress</h1>
            <p>Only visible while authentication is in progress.</p>
        </Authorizing>
    </AuthorizeRouteView>
</Found>
<NotFound>
    <CascadingAuthenticationState>
        <LayoutView Layout="@typeof(MainLayout)">
            <h1>Sorry</h1>
            <p>Sorry, there's nothing at this address.</p>
        </LayoutView>
    </CascadingAuthenticationState>
</NotFound>

如果缺少該組件,似乎 AuthorizeAttribute 並沒有做那么多。

解決方案2
 0  2022-05-12 03:12:37

您必須在 XML 中以 root 身份使用 CascadingAuthenticationState

<CascadingAuthenticationState>
    <Router AppAssembly="@typeof(Program).Assembly">
        <Found Context="routeData">
            <AuthorizeRouteView RouteData="@routeData" DefaultLayout="@typeof(EmptyLayout)">
                <NotAuthorized>
                    <RedirectLogin />
                </NotAuthorized>
            </AuthorizeRouteView>
        </Found>
        <NotFound>
            <LayoutView Layout="@typeof(MainLayout)">
                <h1>404 Error</h1>
                <p>Sorry, there's nothing at this address.</p>
            </LayoutView>
        </NotFound>
    </Router>
</CascadingAuthenticationState>

暫無
暫無

聲明:本站的技術帖子網頁,遵循CC BY-SA 4.0協議,如果您需要轉載,請注明本站網址或者原文地址。任何問題請咨詢:yoyou2525@163.com.

相關問題 為什么[Authorize]屬性不起作用? Blazor 服務器無法訪問具有 [Authorize] 屬性的控制器 在我的項目中,授權屬性有時不工作 服務器端 Blazor Autorize 屬性不起作用 MVC [Authorize]屬性可用於除主頁以外的所有頁面 表單身份驗證User.IsInRole(),Authorize屬性-在生產服務器上不起作用 MVC 自定義授權屬性 Blazor 托管 - 在顯示應用程序之前立即授權 使用[Authorize]屬性定義登錄URL 如何使用 Identity Server 授權 Blazor WebAssembly SPA 應用程序
相關標簽
 
粵ICP備18138465號  © 2020-2024 STACKOOM.COM