首次登录SharePoint时，使用相同STS的SharePoint 2010和MVC失败 [英] SharePoint 2010 and MVC using same STS fails when SharePoint logged in first

问题描述

我有一个使用Visual Studio模板构建的自定义STS.当我仅在SharePoint或MVC中使用它时，它的效果很好.但是，如果我首先登录SharePoint，则在登录MVC网站时会收到以下消息.

I have a custom STS built using the template from Visual Studio. It works great when I just use it in SharePoint or just in MVC. But if I log into SharePoint first, I get the following message when I log into the MVC site.

ID4230:SecurityToken格式不正确.期望元素名称为"SecurityContextToken"，发现为"SP".

ID4230: The SecurityToken was not well formed. Expecting element name 'SecurityContextToken', found 'SP'.

SharePoint似乎正在修改联合cookie，并使其仅在SharePoint网站中起作用.

It seems like SharePoint is modifying the Federated cookie and causing it to only work in SharePoint sites.

以前有没有人看过这个问题?我似乎认为Microsoft已计划允许SharePoint和其他.NET应用程序一起生活.

Has anyone seen this issue before? I would seem that Microsoft has planned to allow SharePoint and other .NET applications to live together.

谢谢.

推荐答案

讨厌回答我自己的问题.但是我遇到的问题是，SharePoint网站A是dev.sites.com，而MVC是books.dev.sites.com.STS联合cookie正在使用dev.sites.com中的cookie问题，而忽略了该书存在于域中的事实.当您登录的站点在域中较低的站点上时，STS中的错误可能会允许进行多级身份验证.

Hate to answer my own question. But the issue I was having was that the SharePoint site A was dev.sites.com and the MVC was books.dev.sites.com. The STS federated cookie was using the cookie issues from dev.sites.com and ignoring the fact that book existed in the domain. Might be a bug in the STS to allow for multiple levels of authentication when the site you logged into was the lower on the domains.

首先登录dev.sites.com

Log into dev.sites.com first

tapes.sites.com fine
this.sites.com fine
books.dev.sites.com FAIL

这篇关于首次登录SharePoint时，使用相同STS的SharePoint 2010和MVC失败的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！