有条件地绕过SessionAuthenticationModule.AuthenticateRequest？ [英] conditionally bypass SessionAuthenticationModule.AuthenticateRequest?

问题描述

是否可以有条件地绕过SessionAuthenticationModule.AuthenticateRequest？  例如，如果传入的Http请求是针对js或图像资源的，我实际上并不关心或需要对该请求的用户进行身份验证。  我尝试在web.config中为我的js和图像资源文件夹修改ACL，以允许匿名访问，但这似乎并不是S.A.M的阶段。    它仍然验证令牌并引发SecurityTokenReceived事件。

解决方案

您是否尝试使用< location>设置对相关文件的匿名访问？ web.config中的元素？  http://msdn.microsoft.com/en-us/library/b6x6shw7.aspx <登记/>
VANI。

Is it possible to conditionally bypass SessionAuthenticationModule.AuthenticateRequest?  For example, if an incoming Http Request is for a js or image resource, I don't really care or need to authenticate the user for that request.  I tried modifying the ACL for my js and image resource folders in web.config to allow anonymous access but this doesn't seem to phase the S.A.M.    It still validates the token and raises the SecurityTokenReceived event.

解决方案

Have you tried setting anonymous access to the relevant files using the <location> element in web.config?  http://msdn.microsoft.com/en-us/library/b6x6shw7.aspx

Vani.

这篇关于有条件地绕过SessionAuthenticationModule.AuthenticateRequest？的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！