"可选" Windows集成的Internet Explorer认证 [英] "Optional" windows integrated authentication for Internet Explorer
问题描述
我正在写的IIS 7中运行它将由内网用户访问,可能是从同一个Windows域的网络服务器是在ASP.NET(MVC 3)的Web应用程序,我想它识别当前登录的Windows用户只要有可能。不过,我从来不希望浏览器弹出身份验证对话框。所以,我想用集成的身份验证,但不会打扰用户。如果他们Firefox或者他们的安全设置浏览不允许自动登录或任何然后只是把他们当作匿名用户。有没有办法做到这一点?
I'm writing an ASP.NET (MVC 3) web app that's running in IIS 7. It will be accessed by intranet users, probably from the same Windows domain that the web server is in, and I'd like it to recognise the currently logged on Windows user whenever possible. However, I never want the browser to pop up the authentication dialog box. So, I want to use integrated authentication, but without bothering the user. If they're browsing in Firefox or their security settings don't allow automatic logon or whatever then just treat them as an anonymous user. Is there any way to do this?
推荐答案
不是真的。要启用集成身份验证,服务器需要一个头发送到浏览器。大多数浏览器回应这个头在1 2的方法。要么他们会默默地正确的标记反应,如IE浏览器,否则他们会提示输入凭据,如Firefox没有或IE浏览器,如果它不能因为集成的身份验证是关闭生成正确的令牌或它在另一个域。
Not really. To enable integrated authentication, the server needs to send a header to the browser. Most browsers respond to this header in 1 of 2 ways. They'll either silently respond with the correct token, as IE does, or they'll prompt for credentials, as Firefox does or IE does if it can't generate the right token because integrated auth is off or it's on another domain.
您可以检测FF和不同的反应,但没有检测如果IE已经集成身份验证方式关闭。
You could detect FF and respond differently, but there is no way of detecting if IE has integrated auth switched off.
这篇关于"可选" Windows集成的Internet Explorer认证的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持IT屋!
