使用Open ID Connect与服务器端Blazor [英] Using Open ID Connect with Server Side Blazor
问题描述
我想在服务器端Blazor应用程序中使用Open ID Connect与Identity Server 4进行授权.我已经在MVC应用程序中使用了相同的设置.
I'd like to use Open ID Connect with Identity Server 4 for authorization in my server side Blazor application. I've got the same setup working in a MVC application.
使用最新的.NET Core版本3.0 Preview 6,可以将属性"@attribute [Authorize]"添加到站点.但是,如果没有获得授权,就不会重定向到Identity Server进行登录,因为我从我的MVC应用程序中使用了该服务器.而是该网站仅显示消息未授权".
With the newest .NET Core version, 3.0 Preview 6, it is possible to add the attribute ´@attribute [Authorize]´ to a site. But if I'm not authorized, I don't get redirected to the Identity Server to log in, as I am used from my MVC applications. Instead the site only shows the message "Not authorized".
在Startup.cs中,我进行了以下设置:
In Startup.cs I've got the following setup:
services.AddAuthentication(options =>
{
options.DefaultScheme = "Cookies";
options.DefaultChallengeScheme = "oidc";
})
.AddCookie("Cookies")
.AddOpenIdConnect("oidc", options =>
{
options.Authority = "http://localhost:5000";
options.RequireHttpsMetadata = false;
options.ClientId = "myClient";
options.SaveTokens = true;
});
和
app.UseAuthentication();
如何告知应用程序,如果我没有登录,我想重定向到Identity Server?
How do I tell the application, that I want to be redirected to the Identity Server if I'm not logged in?
Codevisions的答案是一种解决方法.我在此处和
Codevisions answer works as a workaround. I found pending github issues here and here, planned for .NET Core 3.0 Preview 7 that will possibly cover this issue officially.
推荐答案
添加到下面的ConfigureServices
代码中.
services.AddMvcCore(options =>
{
var policy = new AuthorizationPolicyBuilder()
.RequireAuthenticatedUser()
.Build();
options.Filters.Add(new AuthorizeFilter(policy));
});
这篇关于使用Open ID Connect与服务器端Blazor的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持IT屋!