ASP.NET Identity 2 部署后重新登录 [英] ASP.NET Identity 2 relogin after deploy
问题描述
我正在使用 asp.net mvc 5 和 Identity2,标准登录/密码身份验证,带有记住我"复选框.
I'm using asp.net mvc 5 together with Identity2, standard login/password authentication, with "remember me" checkbox.
想象一下场景:
- 用户登录(标准身份验证 cookie)
- 重新部署应用程序
- 用户需要重新登录.
问题:
- 部署后是否可以不重新登录?
- 有时,在部署后刷新页面时,需要授权访问 - 它会正确显示,但如果您第二次刷新 - 它会重定向到登录页面.
当部署到 IIS7 时,所有这些都会发生,在本地 IIS Express 上一切正常.
All these happens when deployed to IIS7, locally on IIS Express everything is ok.
推荐答案
你必须重新登录的原因是因为机器密钥改变了.机器密钥加密用于加密和解密认证cookie.由于现有的cookie无法解密,用户被视为未授权,需要重新登录.
The reason that you have to relogin is because the machine key changes. The machine key encryption is used to encrypt and decrypt the authentication cookie. Since the existing cookie cannot be decrypted the user is deemed unauthorized and needs to login again.
要克服这个问题,您可以手动设置 机器密钥 在应用程序 web.config
To overcome this you can manually set the machine key in the applications web.config
Developer Fusion 有一个很好的在线工具,可以为您生成这些.下面是一个例子...
There is a good online tool by Developer Fusion which can generate these for you. Below is an example of one...
<machineKey
validationKey="B4A19ABE93A27433785DD47D6444E4B59394E220641D339AEE453D701F202140FF2BF519CED40335A0563AFB494A48DDF1A8DA00D462B42813712D21342B28C2"
decryptionKey="2488146C1EA8177EB75422FE6FB6188550EBD0E4B67FCFD33056E50AD9771040"
validation="SHA1" decryption="AES"
/>
现在每次重新部署密钥都不会改变.
Now everytime you redeploy the keys never change.
希望这会有所帮助.
这篇关于ASP.NET Identity 2 部署后重新登录的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持IT屋!
