.net core 启动后添加IDP
我目前正在dotnetcore 2.1上运行多个IdentityServer4实例(很快将迁移到3.0),并在数据库中存储了SAML IDP列表。我可以在启动时使用以下代码作为authenticationBuilder上的扩展来初始化它们.net core 启动后添加IDP,.net-core,asp.net-identity,identityserver4,sustainsys-saml2,.net Core,Asp.net Identity,Identityserver4,Sustainsys Saml2,我目前正在dotnetcore 2.1上运行多个IdentityServer4实例(很快将迁移到3.0),并在数据库中存储了SAML IDP列表。我可以在启动时使用以下代码作为authenticationBuilder上的扩展来初始化它们 //add IDPs at startup - saml providers comes from DB foreach (var samlProvider in samlProviders) {
//add IDPs at startup - saml providers comes from DB
foreach (var samlProvider in samlProviders)
{
authenticationBuilder.AddSaml2(samlProvider.Scheme, samlProvider.Name, options =>
{
var entityId = new EntityId(my.EntityId);
options.SignInScheme = IdentityServerConstants.ExternalCookieAuthenticationScheme;
options.SPOptions.EntityId = entityId;
options.SPOptions.ModulePath = samlProvider.ModulePath;
if (samlProvider.MinimumSigningAlgorithm != null)
options.SPOptions.MinIncomingSigningAlgorithm = samlProvider.MinimumSigningAlgorithm;
var idp = new IdentityProvider(entityId, options.SPOptions)
{
Binding = Saml2BindingType.HttpRedirect,
LoadMetadata = true
};
if (samlProvider.MetaDataLocation != null)
idp.MetadataLocation = samlProvider.MetaDataLocation;
options.IdentityProviders.Add(idp);
});
}
// get list of new and removed providers
foreach (var provider in removedProviders)
{
_schemeProvider.RemoveScheme(provider.Name);
// Do I need to remove previous options from the SAML cache?
}
foreach (var provider in providerList)
{
Saml2Options newOptions = BuildSaml2Options(provider.EntityId, provider.ModulePath, provider.MinimumSigningAlgorithm, provider.MetaDataLocation);
if (await _schemeProvider.GetSchemeAsync(provider.Scheme) == null)
_schemeProvider.AddScheme(new AuthenticationScheme(provider.Scheme, provider.Name, typeof(Saml2Handler)));
//How can I add saml options for the new authentication scheme here?
}