如何将Asp.Net身份验证与Azure AD身份验证连接
如何将Asp.Net身份验证与Azure AD身份验证连接
提问于 2017-02-23 19:57:52
我在我的asp.net项目中使用UseOpenIdConnectAuthentication协议来连接我的Azure AD,它工作得很好。
今天,我也需要在Asp.net身份或其他不同于Azure AD的身份验证类型中进行身份验证,但这种新的身份验证必须与asp.net (相同的项目页面)连接。
这是双向认证的同时,文件夹不同,但在同一项目中。鉴权后重定向至公共页面。
你能帮帮我吗?
维莱拉
回答 1
Stack Overflow用户
回答已采纳
发布于 2017-02-24 11:33:44
据我所知,OWIN直接支持多个身份提供者。如果我们配置多个身份提供者,当我们点击登录按钮时,它将使用户能够选择提供的身份来登录-如下图所示:
下面是供您参考的代码:
public void ConfigureAuth(IAppBuilder app)
{
// Configure the db context, user manager and signin manager to use a single instance per request
app.CreatePerOwinContext(ApplicationDbContext.Create);
app.CreatePerOwinContext<ApplicationUserManager>(ApplicationUserManager.Create);
app.CreatePerOwinContext<ApplicationSignInManager>(ApplicationSignInManager.Create);
// Enable the application to use a cookie to store information for the signed in user
// and to use a cookie to temporarily store information about a user logging in with a third party login provider
// Configure the sign in cookie
app.UseCookieAuthentication(new CookieAuthenticationOptions
{
AuthenticationType = DefaultAuthenticationTypes.ApplicationCookie,
LoginPath = new PathString("/Account/Login"),
Provider = new CookieAuthenticationProvider
{
// Enables the application to validate the security stamp when the user logs in.
// This is a security feature which is used when you change a password or add an external login to your account.
OnValidateIdentity = SecurityStampValidator.OnValidateIdentity<ApplicationUserManager, ApplicationUser>(
validateInterval: TimeSpan.FromMinutes(30),
regenerateIdentity: (manager, user) => user.GenerateUserIdentityAsync(manager))
}
});
app.UseExternalSignInCookie(DefaultAuthenticationTypes.ExternalCookie);
// Enables the application to temporarily store user information when they are verifying the second factor in the two-factor authentication process.
app.UseTwoFactorSignInCookie(DefaultAuthenticationTypes.TwoFactorCookie, TimeSpan.FromMinutes(5));
// Enables the application to remember the second login verification factor such as phone or email.
// Once you check this option, your second step of verification during the login process will be remembered on the device where you logged in from.
// This is similar to the RememberMe option when you log in.
app.UseTwoFactorRememberBrowserCookie(DefaultAuthenticationTypes.TwoFactorRememberBrowserCookie);
// Uncomment the following lines to enable logging in with third party login providers
//app.UseMicrosoftAccountAuthentication(
// clientId: "",
// clientSecret: "");
//app.UseTwitterAuthentication(
// consumerKey: "",
// consumerSecret: "");
//app.UseFacebookAuthentication(
// appId: "",
// appSecret: "");
//app.UseGoogleAuthentication(new GoogleOAuth2AuthenticationOptions()
//{
// ClientId = "",
// ClientSecret = ""
//});
app.UseOpenIdConnectAuthentication(
new OpenIdConnectAuthenticationOptions
{
ClientId = "eca61fd9-f491-4f03-a622-90837bbc1711",
Authority = "https://login.microsoftonline.com/adfei.onmicrosoft.com",
});
}如果有帮助,请告诉我。
页面原文内容由Stack Overflow提供。腾讯云小微IT领域专用引擎提供翻译支持
原文链接:
https://stackoverflow.com/questions/42415140
复制相关文章
相似问题
腾讯云开发者
