ASP.NET MVC5 OWIN:通过Facebook登录后,为什么User.Identity.IsAuthentic
|
我正在关注VS2013 SPA模板的示例 – 但是我没有使用Bearer Tokens(这可能是问题但是如果可能的话,我希望能够使用cookie). 以下是我的API控制器中相关操作方法的缩减版本: [HttpGet]
[AllowAnonymous]
public async Task<IHttpActionResult> ExternalLogin(string provider,string error = null)
{
if (!User.Identity.IsAuthenticated)
{
return new ChallengeResult(provider,this);
}
ExternalLoginData externalLogin = ExternalLoginData.FromIdentity(User.Identity as ClaimsIdentity);
// ...do stuff with externalLogin data
}
以下是请求的基本流程: >用户点击Facebook按钮,将GET发送到/ api / externallogin?provider = Facebook >位置:http:// localhost:54819 / api / en-gb / account / externallogin?provider = Facebook >然后,浏览器将GET请求发送到步骤5(返回到我的应用程序)的Location头中的URL,并带有以下cookie(根据上面的’Set-Cookie’指令): >曲奇:.AspNet.ExternalCookie = Rv01CHd2onYtN_MHw2Bt71JSaOP71uRk7AP6kSilnAg7djXMh5fbZxlRCPuZhy8inhEF7ChNB261WVU3LGDuIaQmMXgz7tqXeNI-ji8qQFi2d64a720PbRVpWnkuHm2m8L87fkJAGQMJOku5gMrc0EZJfKNgjXiLv-c6Vo7PEzNch-CqcCPFHP0KBo7tGhDTbgJt-RvTzkkB1NL2JBc23eiaeda70oAW4P0NfIyj_i9mLUexHXz8Qooy9CBoLrN7Z198H_cawBfiMMF0tK1YFee2eH_TQxdmdKkUFVRz58EeIKyKUEEDswbQA9evPEHpD8BIlJPXi6R2scC44_INufXuKjHOt7LW3-sPRkUGbEWCWOn4d1B4FkHR_xOHtRpGpIdZU14xJLLiyFYKR0XxJiRlRIph8KKYnZHy61wMOl2yznOFqq3rzHOGhZ1xXEKmUlByiawPbNpdS9pNZVSHlGMbiz0FsOTf4_EVAKEXRQyxEbYjBBXD_5Ne6f7SpBqE >问题:User.Identity.IsAuthenticated check在此阶段返回False(实际上User字段基本上是空的) 我想,鉴于AspNet.ExternalCookie肯定是在步骤6的请求中发送的,那么用户就被认证了. 那么,有没有人知道中间件在这个阶段会寻找什么,以便它解码/解密/反序列化cookie并使用户饱和? 这是Startup.Auth我有: public void ConfigureAuth(IAppBuilder app)
{
app.UseExternalSignInCookie(DefaultAuthenticationTypes.ExternalCookie);
app.UseCookieAuthentication(new CookieAuthenticationOptions
{
//AuthenticationType = DefaultAuthenticationTypes.ApplicationCookie,AuthenticationType = Constants.AuthenticationTypes.MchAdminApplicationCookie,SlidingExpiration = true,ExpireTimeSpan = new TimeSpan(10,0)
});
app.UseCookieAuthentication(new CookieAuthenticationOptions
{
//AuthenticationType = DefaultAuthenticationTypes.ApplicationCookie,AuthenticationType = Constants.AuthenticationTypes.MchApiApplicationCookie,0)
});
var facebook = new FacebookAuthenticationOptions
{
AppId = "mycode",AppSecret = "mysecret",AuthenticationType = "Facebook",SignInAsAuthenticationType = DefaultAuthenticationTypes.ExternalCookie,Provider = new FacebookAuthenticationProvider
{
OnAuthenticated = async ctx =>
{
if (ctx.User["birthday"] != null)
{
ctx.Identity.AddClaim(new Claim(ClaimTypes.DateOfBirth,ctx.User["birthday"].ToString()));
}
}
}
};
facebook.Scope.Add("user_birthday");
app.UseFacebookAuthentication(facebook);
}
解决方法我遇到了同样的问题.您应该向ExternalLogin操作添加两个属性:[OverrideAuthentication] [HostAuthentication(DefaultAuthenticationTypes.ExternalCookie)] (编辑:安卓应用网) 【声明】本站内容均来自网络,其相关言论仅代表作者个人观点,不代表本站立场。若无意侵犯到您的权利,请及时与联系站长删除相关内容! |
- asp.net-mvc – 如何将MVC 5 IdentityModels.cs移
- asp.net-mvc – 变化:*错误地添加到http标头响应
- asp.net – WCF与WebAPI和本机移动设备
- asp.net – 内联JavaScript的外部JavaScript文件
- asp.net-mvc-2 – 无法加载文件或程序集’System
- asp.net – 如何使用EntityFramework种子数据代码
- asp.net – ADFS 2.0超时以及Freshness Value,To
- ASP.NET MVC 4软件包在mono v3下不工作
- asp.net-mvc-4 – 访问路径“/ etc/mono/registr
- asp.net – CreateUserWizard – 添加步骤,但不要