https://<myapp>.azurewebsites.net/.auth/login/aad/callback 是什么意思? [英] What does https://&lt;myapp&gt;.azurewebsites.net/.auth/login/aad/callback mean?

问题描述

我正在使用 Azure 应用服务为我的 Web 应用程序配置身份验证.我选择了带有 Express 模式的 AAD 来注册我的应用程序.

它在 AAD 注册了我的应用程序，其回复 url 为 https://.azurewebsites.net/.auth/login/aad/callback.我拦截了上述回调的请求 GET POST .它发送访问令牌.

问题:我尚未在 Web 应用程序中实现上述回复 url 的控制器.谁在正确处理它?<​​/p>

请让我了解上面的回调.如果需要，可以更改为不同的 POST Url 吗?

解决方案

/.auth/login/{provider}/callback 端点由 Azure 自己的 Easy Auth [1] 公开.

[1] 中的每个身份提供者都有一个.

简而言之，他们负责从提供程序中提取访问令牌等，设置 cookie 等.它们在请求登陆您的应用之前得到处理.

[1] https://docs.microsoft.com/en-us/azure/app-service/overview-authentication-authorization

I am configuring Authentication for my Web application using Azure App Service. I chose AAD with Express mode to register my application.

It registered my application at AAD with reply-url as https://.azurewebsites.net/.auth/login/aad/callback. I intercepted the requests GET POST for above callback. It sends the access token.

Question: I have not implemented the controller for above reply-url in web application. Who is handling it correctly?

Please shed me some light on above callback. Can it be changed to different POST Url if needed?

解决方案

The /.auth/login/{provider}/callback endpoint is exposed by Azure’s own Easy Auth [1].

There’s one for each of the identity providers in [1].

In short, they are responsible for extracting access token etc from the provider, setting cookies and so on. They are handled prior to the request landing in your app.

[1] https://docs.microsoft.com/en-us/azure/app-service/overview-authentication-authorization

这篇关于https://<myapp>.azurewebsites.net/.auth/login/aad/callback 是什么意思?的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！