https://< myapp> .azurewebsites.net/.auth/login/aad/callback是什么意思? [英] What does https://<myapp>.azurewebsites.net/.auth/login/aad/callback mean?

问题描述

我正在使用Azure App Service为我的Web应用程序配置身份验证.我选择了Express模式的AAD来注册我的应用程序.

它在我的AAD注册了我的应用程序，其回复网址为 https://.azurewebsites.net/.auth/login/aad/callback .我拦截了上述回调的GET \ POST请求.它发送访问令牌.

问题:我尚未在Web应用程序中实现上述reply-url的控制器.谁在正确处理它?<​​/p>

请让我对上面的回调有所了解.如果需要，可以将其更改为其他POST Url吗?

解决方案

Azure自己的Easy Auth [1]公开了/.auth/login/{provider}/callback 终结点.>

[1]中的每个身份提供者都有一个.

简而言之，他们负责从提供者中提取访问令牌等，设置cookie等.它们会在请求登陆到您的应用之前进行处理.

[1] https://docs.microsoft.com/en-us/azure/app-service/overview-authentication-authorization

I am configuring Authentication for my Web application using Azure App Service. I chose AAD with Express mode to register my application.

It registered my application at AAD with reply-url as https://.azurewebsites.net/.auth/login/aad/callback. I intercepted the requests GET\ POST for above callback. It sends the access token.

Question: I have not implemented the controller for above reply-url in web application. Who is handling it correctly?

Please shed me some light on above callback. Can it be changed to different POST Url if needed?

解决方案

The /.auth/login/{provider}/callback endpoint is exposed by Azure’s own Easy Auth [1].

There’s one for each of the identity providers in [1].

In short, they are responsible for extracting access token etc from the provider, setting cookies and so on. They are handled prior to the request landing in your app.

[1] https://docs.microsoft.com/en-us/azure/app-service/overview-authentication-authorization

这篇关于https://&lt; myapp&gt; .azurewebsites.net/.auth/login/aad/callback是什么意思?的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！