错 - SignInResponse消息仅可在当前Web应用程序中的重定向 - MVC 2.0应用程序 [英] Error - A SignInResponse message may only redirect within the current web application - MVC 2.0 application

问题描述

我有一个情况，我们有一个MVC 2应用程序（我有一个基本的MVC 2应用程序尝试这样做没有任何多余的东西，还是同样的问题），并使用ADFS 2验证我的用户我。

所以..
现在我进入我的申请，得到下面的..
ID3206：一个SignInResponse消息仅可在当前Web应用程序中的重定向：'/ [应用]'是不允许的。
说明：执行当前Web请求的执行过程中发生未处理的异常。请查看有关错误的详细信息的堆栈跟踪以及它起源于code。
异常详细信息：Microsoft.IdentityModel.Protocols.FederationException：ID3206：一个SignInResponse消息可能只有当前的网络应用程序中的重定向：'/ [应用]'是不允许的

我看了这个大多数博客，并发布一个..

 ＆LT; federatedAuthentication＆GT;
            ＆LT; wsFederation passiveRedirectEnabled =真发行人=HTTPS：// AUTH [域] / ADFS / LS /的境界=htt​​ps：//开头[开发领域] / [应用] /requireHttps =真/＆GT ;
            ＆LT;的CookieHandler requireSsl =真/＆GT;
          ＆LT; / federatedAuthentication＆GT;
＆LT; audienceUris＆GT;
    ＆LT;增加价值=htt​​ps：//开头[开发领域] / [应用] //＆GT;
  ＆LT; / audienceUris＆GT;
 

1. 我对境界和audienceUris的斜线。


2. 我加入了他建议的Application_BeginRequest - 我再复制code为[开发领域]因为这是那里的证书是..这只是卡在那么一个无限循环
。

3. 我也检查了我的信赖方日内瓦服务器上。该标识符和端点（POST）都是https：//开头[开发领域] / [程序] / - 再次与结尾的斜线

我认为这是与事实这是一个MVC应用程序，我已经创造了无数的声明式的网站，并得到了我的Default.aspx页面上索赔等问题。我的想法是，所涉及的MVC应用程序的路由以某种方式张贴回来了？

任何帮助pcaited如林真的AP $ P $看着这个安静了一段时间，现在也没有用。

Ĵ

解决方案

我一直在撕裂我的头发就这一个。我也有我的配置中指定了结尾的斜线。原来，在我的情况下，导航到我的应用程序与斜线在像这样的浏览器：

的http：//本地主机/ MyApp的/

将工作，而

的http：//本地主机/ MyApp的

不会。

如果我能挖一些原因是这样的话，我会添加上为什么发生这种情况更多一些背景。

I have a situation where we have a MVC 2 application(I tried this with a basic MVC 2 app without any extra stuff, still same problem) and am using adfs 2 for authenticating my users.

So.. Now I get into my application and I get the below.. ID3206: A SignInResponse message may only redirect within the current web application: '/[app]' is not allowed. Description: An unhandled exception occurred during the execution of the current web request. Please review the stack trace for more information about the error and where it originated in the code. Exception Details: Microsoft.IdentityModel.Protocols.FederationException: ID3206: A SignInResponse message may only redirect within the current web application: '/[app]' is not allowed.

I have read most blogs on this, and posted to one..

    <federatedAuthentication>
            <wsFederation passiveRedirectEnabled="true" issuer="https://auth.[domain]/adfs/ls/" realm="https://[development domain]/[app]/" requireHttps="true" />
            <cookieHandler requireSsl="true" />
          </federatedAuthentication>
<audienceUris>
    <add value="https://[development domain]/[app]/" />
  </audienceUris>

1. I have the trailing slash on the realm and audienceUris.
2. I have added what he suggested to Application_BeginRequest – I then copied code to [development domain] as that’s where the certs are.. It just gets stuck in an infinite loop then.
3. I also have checked my Relying Party on the Geneva server.. The Identifiers and Endpoints(POST) are both https://[development domain]/[app]/ - again with the trailing slash

I think it’s a problem with the fact it’s a MVC application, I have created numerous Claims Aware website and got my claims etc on the default.aspx page. My thinking is that the routing that is involved with the MVC app is somehow posting it back wrong?

any help really apprecaited as Im looking at this for quiet a while now to no avail..

J

解决方案

I've been tearing my hair out on this one. I too have the trailing slash specified in my configuration. Turns out that, in my case, navigating to my app with a trailing slash in the browser like so:

http://localhost/myapp/

will work, whereas

http://localhost/myapp

will not.

If I can dig up some more reasons why this is the case, I will add some more background on why this is happening.

这篇关于错 - SignInResponse消息仅可在当前Web应用程序中的重定向 - MVC 2.0应用程序的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！