将 [Authorize] 添加到无法重定向到身份登录路由的控制器。 ASP.NET 核心 3.1 MVC
Adding [Authorize] to controller failing to redirect to Identity Login route. ASP.NET CORE 3.1 MVC
我有一个 asp.net 核心 3.1 MVC 项目。它添加了身份。当我通常单击按钮转到登录页面或注册页面时,它按预期工作。但是,当我在 Startup.cs 文件中的控制器或全局授权过滤器上使用 [Authorize] 时,页面不会重定向到登录页面。
这种情况下的重定向 link 是
https://localhost:5001/Account/Login?ReturnUrl=%2F
link 应该在哪里
https://localhost:5001/Identity/Account/Login?ReturnUrl=%2F
如果您仔细观察,我得到的 link 中缺少区域名称 "Identity"。我猜测我的 Startup.cs 文件配置有问题,但无法弄清楚是什么。
我的项目中有 Multiple Areas 以及 Identity
Startup.cs
public Startup(IConfiguration configuration)
{
Configuration = configuration;
}
public IConfiguration Configuration { get; }
// This method gets called by the runtime. Use this method to add services to the container.
public void ConfigureServices(IServiceCollection services)
{
services.AddDbContext<ApplicationDbContext>(options =>
options.UseSqlServer(
Configuration.GetConnectionString("DefaultConnection")));
/*services.AddDefaultIdentity<IdentityUser>(options => options.SignIn.RequireConfirmedAccount = true)
.AddEntityFrameworkStores<ApplicationDbContext>();*/
services.AddIdentity<ApplicationUser, IdentityRole>().AddEntityFrameworkStores<ApplicationDbContext>().AddDefaultTokenProviders();
services.AddTransient<IEmailSender, EmailSender>();
services.AddControllersWithViews();
services.AddRazorPages().AddMvcOptions(options => options.Filters.Add(new AuthorizeFilter()));
services.AddSingleton<IConfiguration>(Configuration);
services.AddMvc(options => options.EnableEndpointRouting = false);
services.AddMvc().AddRazorRuntimeCompilation();
}
// This method gets called by the runtime. Use this method to configure the HTTP request pipeline.
public void Configure(IApplicationBuilder app, IWebHostEnvironment env)
{
if (env.IsDevelopment())
{
app.UseDeveloperExceptionPage();
app.UseDatabaseErrorPage();
}
else
{
app.UseExceptionHandler("/Home/Error");
// The default HSTS value is 30 days. You may want to change this for production scenarios, see https://aka.ms/aspnetcore-hsts.
app.UseHsts();
}
app.UseHttpsRedirection();
app.UseStaticFiles();
app.UseRouting();
app.UseAuthentication();
app.UseAuthorization();
app.UseEndpoints(endpoints =>
{
endpoints.MapRazorPages().RequireAuthorization();
endpoints.MapControllerRoute(
name: "Identity",
pattern: "{area:exists}/{controller=Home}/{action=Index}/{id?}");
endpoints.MapControllerRoute(
name: "default",
pattern: "{controller=Home}/{action=Index}/{id?}");
endpoints.MapRazorPages();
});
}
}
如有任何帮助,我们将不胜感激。谢谢。
在 services.ConfigureApplicationCookie 中定义登录路径,如下所示:
services.ConfigureApplicationCookie(options =>
{
options.LoginPath = new PathString("/Identity/Account/Login");
//other properties
});
我刚刚浏览了 GitHub,发现 Account/Login 在 CookieAuthenticationDefaults. I then found that being used by PostConfigureCookieAuthenticationOptions 中被设置为默认值,它在指定 none 时设置了合理的配置选项.由此看来,在我看来你必须这样配置:
services.ConfigureApplicationCookie(x => x.LoginPath = "/identity/account/login");
x 在这种情况下是类型 CookieAuthenticationOptions,这是 PostConfigureCookieAuthenticationOptions 正在读取的类型。
我有一个 asp.net 核心 3.1 MVC 项目。它添加了身份。当我通常单击按钮转到登录页面或注册页面时,它按预期工作。但是,当我在 Startup.cs 文件中的控制器或全局授权过滤器上使用 [Authorize] 时,页面不会重定向到登录页面。
这种情况下的重定向 link 是
https://localhost:5001/Account/Login?ReturnUrl=%2F
link 应该在哪里
https://localhost:5001/Identity/Account/Login?ReturnUrl=%2F
如果您仔细观察,我得到的 link 中缺少区域名称 "Identity"。我猜测我的 Startup.cs 文件配置有问题,但无法弄清楚是什么。 我的项目中有 Multiple Areas 以及 Identity
Startup.cs
public Startup(IConfiguration configuration)
{
Configuration = configuration;
}
public IConfiguration Configuration { get; }
// This method gets called by the runtime. Use this method to add services to the container.
public void ConfigureServices(IServiceCollection services)
{
services.AddDbContext<ApplicationDbContext>(options =>
options.UseSqlServer(
Configuration.GetConnectionString("DefaultConnection")));
/*services.AddDefaultIdentity<IdentityUser>(options => options.SignIn.RequireConfirmedAccount = true)
.AddEntityFrameworkStores<ApplicationDbContext>();*/
services.AddIdentity<ApplicationUser, IdentityRole>().AddEntityFrameworkStores<ApplicationDbContext>().AddDefaultTokenProviders();
services.AddTransient<IEmailSender, EmailSender>();
services.AddControllersWithViews();
services.AddRazorPages().AddMvcOptions(options => options.Filters.Add(new AuthorizeFilter()));
services.AddSingleton<IConfiguration>(Configuration);
services.AddMvc(options => options.EnableEndpointRouting = false);
services.AddMvc().AddRazorRuntimeCompilation();
}
// This method gets called by the runtime. Use this method to configure the HTTP request pipeline.
public void Configure(IApplicationBuilder app, IWebHostEnvironment env)
{
if (env.IsDevelopment())
{
app.UseDeveloperExceptionPage();
app.UseDatabaseErrorPage();
}
else
{
app.UseExceptionHandler("/Home/Error");
// The default HSTS value is 30 days. You may want to change this for production scenarios, see https://aka.ms/aspnetcore-hsts.
app.UseHsts();
}
app.UseHttpsRedirection();
app.UseStaticFiles();
app.UseRouting();
app.UseAuthentication();
app.UseAuthorization();
app.UseEndpoints(endpoints =>
{
endpoints.MapRazorPages().RequireAuthorization();
endpoints.MapControllerRoute(
name: "Identity",
pattern: "{area:exists}/{controller=Home}/{action=Index}/{id?}");
endpoints.MapControllerRoute(
name: "default",
pattern: "{controller=Home}/{action=Index}/{id?}");
endpoints.MapRazorPages();
});
}
}
如有任何帮助,我们将不胜感激。谢谢。
在 services.ConfigureApplicationCookie 中定义登录路径,如下所示:
services.ConfigureApplicationCookie(options =>
{
options.LoginPath = new PathString("/Identity/Account/Login");
//other properties
});
我刚刚浏览了 GitHub,发现 Account/Login 在 CookieAuthenticationDefaults. I then found that being used by PostConfigureCookieAuthenticationOptions 中被设置为默认值,它在指定 none 时设置了合理的配置选项.由此看来,在我看来你必须这样配置:
services.ConfigureApplicationCookie(x => x.LoginPath = "/identity/account/login");
x 在这种情况下是类型 CookieAuthenticationOptions,这是 PostConfigureCookieAuthenticationOptions 正在读取的类型。