在openId授权代码流中使用最新版本的Katana DLL自动兑换代码(授权代码) [英] Automatic code( authorization code ) redemption using latest version of Katana DLLs in openId authorization code flow
问题描述
从下面的最新版本和下面的讨论中可以看出,Katana(4.1.0)现在支持具有自动代码赎回功能的代码流(这意味着我们没有显式调用tokenendpoint来赎回idtoken,accesstoken等代码)
From the recent release and conversation below, it says that now Katana(4.1.0) supports code-flow with automatic code redemption(that meaning we do not have call tokenendpoint explicitly to redeem the code for idtoken, accesstoken etc)
https://github.com/aspnet/AspNetKatana/pull/297
所以,我已经升级了Katana dll,并且有p
so, I've upgraded Katana dlls and have p
Notifications = new OpenIdConnectAuthenticationNotifications()
{
RedirectToIdentityProvider = OnRedirectToIdentityProvider,
//MessageReceived = OnMessageReceived, -- previous I were calling token endpoint in this notification
SecurityTokenReceived = notification => Task.FromResult(0),
SecurityTokenValidated = OnSecurityTokenValidated,
AuthenticationFailed = OnAuthenticationFailed,
AuthorizationCodeReceived = AuthorizationCodeReceived, -- added this notification per latest improvements
TokenResponseReceived = TokenResponseReceived
}
以及此处的实现
private Task AuthorizationCodeReceived(AuthorizationCodeReceivedNotification arg)
{
return Task.FromResult(0);
}
并且我希望中间件调用令牌端点来兑换身份验证代码,但这不会发生.
and Im expecting middleware to call the token endpoint to redeem the auth code, which doesn't happen.
我在这里错过了什么吗?我应该在这里添加一些代码以便中间件兑换代码吗?请咨询..
Am I missing something here? should I add some code here for the middleware to redeem the code? Please advsie..
更新:
与其他博客一样,我在下面设置了
I have set below as per other blogs,
args.App.UseOpenIdConnectAuthentication(
new OpenIdConnectAuthenticationOptions
{
//other properties removed for brevity
SaveTokens = true,
RedeemCode = true,
}
still midleware不会自动兑换代码.
still midleware does not redeem codes automatically.
只是一个想法,.NET内核是否支持此功能?我实际上使用的是.NET Framework 4.7.1.
Just a thought, is this supported on in .NET core? Im actually using .NET Framework 4.7.1.
推荐答案
实际上,以上设置可以正常工作,并且可以进行令牌api调用,但是由于"clientsecret"而导致的失败因我的设置而丢失,一旦更正,一切都可以正常进行.谢谢.
Actually, the above settings were working and making token api call, but failing due to "clientsecret" was missing in my settings, once corrected everything worked just fine.Thank you.
这篇关于在openId授权代码流中使用最新版本的Katana DLL自动兑换代码(授权代码)的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持IT屋!