Fatal编程技术网
  • asp.net-mvc/
  • Asp.net mvc 标识不是使用WIF的IClaimIdentity(在ASP.NET MVC 4/Azure上)

Asp.net mvc 标识不是使用WIF的IClaimIdentity(在ASP.NET MVC 4/Azure上)

asp.net-mvc azure

Asp.net mvc 标识不是使用WIF的IClaimIdentity(在ASP.NET MVC 4/Azure上),asp.net-mvc,azure,wif,Asp.net Mvc,Azure,Wif,我已经有了VS2012RC的WIF工具,我正试图让我的ASP.NETMVC4项目使用它们。我已安装Microsoft.IdentityModel.dll的 MVC项目是Azure项目的一部分,但我现在已经选择了MVC项目启动 目前,我选择了“本地开发测试STS”(使用默认设置)。执行以下代码时(在我的HomeController索引视图中): 已验证:@User.Identity.IsAuthenticated 名称:@User.Identity.Name @{ var identity=Use

我已经有了VS2012RC的WIF工具,我正试图让我的ASP.NETMVC4项目使用它们。我已安装Microsoft.IdentityModel.dll的

MVC项目是Azure项目的一部分,但我现在已经选择了MVC项目启动

目前,我选择了“本地开发测试STS”(使用默认设置)。执行以下代码时(在我的HomeController索引视图中):

已验证:@User.Identity.IsAuthenticated

名称:@User.Identity.Name

@{
var identity=User.identity为Microsoft.IdentityModel.Claims.iclaimidentity;
if(identity==null)
{
错误:没有身份声明要处理

}
其他的
{
类型值发行人原始发行人
@foreach(identity.Claims中的var索赔)
{
@索赔。ClaimType@claim.Value@索赔。Issuer@claim.OriginalIssuer
}
}
}
然后我得到如下输出:

<p>Authenticated: True</p>
<p>Name: Terry</p>
<p>Error: no identity claims to process!</p>

已验证:真

姓名:特里

错误:没有身份声明要处理
为什么索赔没有被提起

以下是web.config的相关部分:

<configSections>
  <section name="system.identityModel" type="System.IdentityModel.Configuration.SystemIdentityModelSection, System.IdentityModel, Version=4.0.0.0, Culture=neutral, PublicKeyToken=B77A5C561934E089" />
  <section name="system.identityModel.services" type="System.IdentityModel.Services.Configuration.SystemIdentityModelServicesSection, System.IdentityModel.Services, Version=4.0.0.0, Culture=neutral, PublicKeyToken=B77A5C561934E089" />
</configSections>
<appSettings>
  <add key="aspnet:UseTaskFriendlySynchronizationContext" value="true" />
  <add key="webpages:Version" value="2.0.0.0" />
  <add key="webpages:Enabled" value="false" />
  <add key="PreserveLoginUrl" value="true" />
  <add key="ida:FederationMetadataLocation" value="http://localhost:13340/wsFederationSTS/FederationMetadata/2007-06/FederationMetadata.xml" />
  <add key="ida:ProviderSelection" value="localSTS" />
</appSettings>
<location path="FederationMetadata">
  <system.web>
    <authorization>
      <allow users="*" />
    </authorization>
  </system.web>
</location>
<system.web>
  <authorization>
    <deny users="?" />
  </authorization>
  <authentication mode="None" />
  <profile defaultProvider="DefaultProfileProvider">
    <providers>
      <add name="DefaultProfileProvider" type="System.Web.Providers.DefaultProfileProvider, System.Web.Providers, Version=1.0.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35" connectionStringName="DefaultConnection" applicationName="/" />
    </providers>
  </profile>
  <membership defaultProvider="DefaultMembershipProvider">
    <providers>
      <add name="DefaultMembershipProvider" type="System.Web.Providers.DefaultMembershipProvider, System.Web.Providers, Version=1.0.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35" connectionStringName="DefaultConnection" enablePasswordRetrieval="false" enablePasswordReset="true" requiresQuestionAndAnswer="false" requiresUniqueEmail="false" maxInvalidPasswordAttempts="5" minRequiredPasswordLength="6" minRequiredNonalphanumericCharacters="0" passwordAttemptWindow="10" applicationName="/" />
    </providers>
  </membership>
  <roleManager defaultProvider="DefaultRoleProvider">
    <providers>
      <add name="DefaultRoleProvider" type="System.Web.Providers.DefaultRoleProvider, System.Web.Providers, Version=1.0.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35" connectionStringName="DefaultConnection" applicationName="/" />
    </providers>
  </roleManager>
  <sessionState mode="InProc" customProvider="DefaultSessionProvider">
    <providers>
      <add name="DefaultSessionProvider" type="System.Web.Providers.DefaultSessionStateProvider, System.Web.Providers, Version=1.0.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35" connectionStringName="DefaultConnection" />
    </providers>
  </sessionState>
</system.web>
<system.webServer>
  <validation validateIntegratedModeConfiguration="false" />
  <modules runAllManagedModulesForAllRequests="true">
    <add name="WSFederationAuthenticationModule" type="System.IdentityModel.Services.WSFederationAuthenticationModule, System.IdentityModel.Services, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089" preCondition="managedHandler" />
    <add name="SessionAuthenticationModule" type="System.IdentityModel.Services.SessionAuthenticationModule, System.IdentityModel.Services, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089" preCondition="managedHandler" />
  </modules>
</system.webServer>
<system.identityModel>
  <identityConfiguration>
    <audienceUris>
      <add value="http://localhost:50332/" />
    </audienceUris>
    <issuerNameRegistry type="System.IdentityModel.Tokens.ConfigurationBasedIssuerNameRegistry, System.IdentityModel, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089">
      <trustedIssuers>
        <add thumbprint="9B74CB2F320F7AAFC156E1252270B1DC01EF40D0" name="LocalSTS" />
        <add thumbprint="C00C014CA49559426B6D70162C2D89689E9397FF" name="https://nitoprograms-0.accesscontrol.windows.net/" />
      </trustedIssuers>
    </issuerNameRegistry>
    <certificateValidation certificateValidationMode="None" />
  </identityConfiguration>
</system.identityModel>
<system.identityModel.services>
  <federationConfiguration>
    <cookieHandler requireSsl="false" />
    <wsFederation passiveRedirectEnabled="true" issuer="http://localhost:13340/wsFederationSTS/Issue" realm="http://localhost:50332/" reply="http://localhost:50332/" requireHttps="false" />
  </federationConfiguration>
</system.identityModel.services>
在本地运行(在Windows 8版本预览计算机上)时,以下代码不起作用:

已验证:@User.Identity.IsAuthenticated

名称:@User.Identity.Name

@{
动态标识=User.identity;
类型值发行人原始发行人
@foreach(identity.Claims中的var索赔)
{
@索赔。Type@claim.Value@索赔。Issuer@claim.OriginalIssuer
}
}
这使我相信,用于VS2012RC的WIF工具只支持将.NET 4.5作为目标

在本地运行时,实际运行时是.NET 4.5,它具有与WIF相关的核心标识更改(与)。因此,通过使用
dynamic
(并将
ClaimType
更改为
Type
),我可以在本地访问.NET 4.5 WIF运行时(即使项目的目标是.NET 4.0)

我尝试部署到云上,但应用程序抱怨没有找到
System.IdentityModel.Services.dll
(因为Azure目前只使用.NET 4.0)。对我来说没什么大不了的,因为我不打算在.NET 4.5发布之前进行部署。

我认为您缺少ASP.NET配置中“经典”模式的WIF模块(不确定如何运行应用程序)。尝试添加以下内容:

 <system.web>
    <httpModules>
          <add name="WSFederationAuthenticationModule" type="Microsoft.IdentityModel.Web.WSFederationAuthenticationModule, Microsoft.IdentityModel, Version=3.5.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35" />
          <add name="SessionAuthenticationModule" type="Microsoft.IdentityModel.Web.SessionAuthenticationModule, Microsoft.IdentityModel, Version=3.5.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35" />
    </httpModules>...
 </system.web>





<p>Authenticated: @User.Identity.IsAuthenticated</p>
<p>Name: @User.Identity.Name</p>
@{
    dynamic identity = User.Identity;
    <table>
        <tr>
            <th>Type</th><th>Value</th><th>Issuer</th><th>Original Issuer</th>
        </tr>
        @foreach (var claim in identity.Claims)
        {
            <tr>
                <td>@claim.Type</td><td>@claim.Value</td><td>@claim.Issuer</td><td>@claim.OriginalIssuer</td>
            </tr>
        }
    </table>
}



 <system.web>
    <httpModules>
          <add name="WSFederationAuthenticationModule" type="Microsoft.IdentityModel.Web.WSFederationAuthenticationModule, Microsoft.IdentityModel, Version=3.5.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35" />
          <add name="SessionAuthenticationModule" type="Microsoft.IdentityModel.Web.SessionAuthenticationModule, Microsoft.IdentityModel, Version=3.5.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35" />
    </httpModules>...
 </system.web>