Umbraco ADFS 集成 (OpenIdConnect) GroupSid 未设置?
Umbraco ADFS integration (OpenIdConnect) GroupSid not set?
我已成功为 Umbraco 8 设置 ADFS 集成。
我可以登录等等,但我不知道我的角色在哪里..
Azure里面配置的那位说我可以通过'GroupSid'claim获取,但是好像是空的,还是我漏了什么?
SecurityTokenValidated = async n =>
{
ClaimsIdentity claimsId = n.AuthenticationTicket.Identity;
var identityUser = n.AuthenticationTicket.Identity;
var newIdentityUser = new ClaimsIdentity(identityUser.AuthenticationType);
newIdentityUser.AddClaim(new Claim(ClaimTypes.Email, identityUser.Name));
newIdentityUser.AddClaim(new Claim(ClaimTypes.Upn, identityUser.Name));
newIdentityUser.AddClaim(new Claim(ClaimTypes.Role, identityUser.Name));
newIdentityUser.AddClaim(new Claim(ClaimTypes.GroupSid, identityUser.Name));
newIdentityUser.AddClaim(new Claim(ClaimTypes.PrimarySid, identityUser.Name));
var nameIdentifier = identityUser.FindFirst(ClaimTypes.NameIdentifier);
var givenName = identityUser.FindFirst(ClaimTypes.GivenName);
if (nameIdentifier != null)
{
newIdentityUser.AddClaim(nameIdentifier);
}
if (givenName != null)
{
newIdentityUser.AddClaim(givenName);
}
n.AuthenticationTicket = new AuthenticationTicket(newIdentityUser, n.AuthenticationTicket.Properties);
await Task.FromResult(BackOfficeUserPasswordCheckerResult.ValidCredentials);
},
当断点到达这些行时,我看到了 Claims 集合..
ClaimsIdentity claimsId = n.AuthenticationTicket.Identity;
var identityUser = n.AuthenticationTicket.Identity;
在这里我只能看到 givenname 等值。
谁能帮帮我?是我这边的问题,还是 Azure 的问题?
非常感谢!
负责声明部分的一方未设置(针对测试用户)的角色。
我已成功为 Umbraco 8 设置 ADFS 集成。 我可以登录等等,但我不知道我的角色在哪里..
Azure里面配置的那位说我可以通过'GroupSid'claim获取,但是好像是空的,还是我漏了什么?
SecurityTokenValidated = async n =>
{
ClaimsIdentity claimsId = n.AuthenticationTicket.Identity;
var identityUser = n.AuthenticationTicket.Identity;
var newIdentityUser = new ClaimsIdentity(identityUser.AuthenticationType);
newIdentityUser.AddClaim(new Claim(ClaimTypes.Email, identityUser.Name));
newIdentityUser.AddClaim(new Claim(ClaimTypes.Upn, identityUser.Name));
newIdentityUser.AddClaim(new Claim(ClaimTypes.Role, identityUser.Name));
newIdentityUser.AddClaim(new Claim(ClaimTypes.GroupSid, identityUser.Name));
newIdentityUser.AddClaim(new Claim(ClaimTypes.PrimarySid, identityUser.Name));
var nameIdentifier = identityUser.FindFirst(ClaimTypes.NameIdentifier);
var givenName = identityUser.FindFirst(ClaimTypes.GivenName);
if (nameIdentifier != null)
{
newIdentityUser.AddClaim(nameIdentifier);
}
if (givenName != null)
{
newIdentityUser.AddClaim(givenName);
}
n.AuthenticationTicket = new AuthenticationTicket(newIdentityUser, n.AuthenticationTicket.Properties);
await Task.FromResult(BackOfficeUserPasswordCheckerResult.ValidCredentials);
},
当断点到达这些行时,我看到了 Claims 集合..
ClaimsIdentity claimsId = n.AuthenticationTicket.Identity;
var identityUser = n.AuthenticationTicket.Identity;
在这里我只能看到 givenname 等值。
谁能帮帮我?是我这边的问题,还是 Azure 的问题?
非常感谢!
负责声明部分的一方未设置(针对测试用户)的角色。