从ADFS服务器URL重定向 [英] URL redirection from ADFS server

问题描述

我用我的ASP.net web应用程序进行验证ADFS。在STS服务器浏览器重定向到 https://test.contoso.com 。首先重定向客户STS STS时，不允许任何回报的URL参数。

I'm using ADFS for authentication in my ASP.net web app. The STS server redirects the browser to https://test.contoso.com. STS doesn't allow any return URL parameter when redirecting the client to STS in the first place.

有没有可能从 https://test.contoso.com 浏览器（从STS重定向后）重定向到任何其他URL，说 https://variableName.test1.contoso2.com ？

Would it be possible to redirect the browser from https://test.contoso.com (after redirection from STS) to any other URL, say https://variableName.test1.contoso2.com ?

任何帮助很多AP preciated。

Any help is much appreciated.

推荐答案

一旦认证，ADFS默认情况下应该将用户重定向到依赖方的应用领域。这听起来像这是你有什么已经但是你希望能够重定向到一个不同的RP URL。

Upon authentication, ADFS by default should redirect the user to the Relying Party Application realm. It sounds like this is what you have already but you want to be able to redirect to a different RP URL.

让我们假设你有一个RP，与境界 HTTP：//myr$p$palm.com 在ADFS配置。用户浏览到 HTTP：//myr$p$palm.com/Contacts.aspx 。的WIF FederatedAuthenticationModule（FAM）看到该用户不authenticatd，因此节省了称为る一返回URL参数的内部，相对URL/Contacts.aspx。该单元被打包WS联合被动环境参数（wctx）内。该FAM然后将用户重定向到ADFS进行身份验证。 ADFS将preserve的wctx参数和回声回的RP：在验证成功后（HTTP //myr$p$palm.com）。现在FAM处理这个ADFS回应。当FAM打开了wctx，它注意到RU = / Contacts.aspx，所以建立会话后，它将把用户重定向到Contacts.aspx。

Let's suppose you have an RP, with the realm http://myrprealm.com configured in ADFS. The user browses to http://myrprealm.com/Contacts.aspx. The WIF FederatedAuthenticationModule (FAM) sees that the user is not authenticatd, so it saves the relative url "/Contacts.aspx" inside a Return URL parameter called ru. This ru gets packaged inside the WS-Federation Passive context parameter (wctx). The FAM then redirects the user to ADFS for authentication. ADFS will preserve the wctx parameter and echo it back to the RP (http://myrprealm.com) upon successful authentication. Now the FAM processes this ADFS response. When the FAM opens up the wctx, it notices that ru=/Contacts.aspx, so after establishing a session, it will redirect the user to Contacts.aspx.

如果您合并WIF到使用的SDK你的ASP.NET网站（视觉工作室>添加STS引用），您将有默认这种行为。

If you incorporate WIF into your ASP.NET site using the the SDK (visual studio > Add STS Reference), you will have this behavior by default.

这篇关于从ADFS服务器URL重定向的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！