Authentication 如何使用Blazor将Google身份验证和API密钥身份验证结合起来?
我有一个使用.NETCore3.1的Blazor应用程序。 我使用Google身份验证登录,如@MichaelWashington撰写的本文所述Authentication 如何使用Blazor将Google身份验证和API密钥身份验证结合起来?,authentication,google-authentication,blazor-server-side,.net-core-3.1,Authentication,Google Authentication,Blazor Server Side,.net Core 3.1,我有一个使用.NETCore3.1的Blazor应用程序。 我使用Google身份验证登录,如@MichaelWashington撰写的本文所述 我将[Authorize]添加到我的控制器,并且只有登录的用户才能访问我的控制器 我还需要使用API密钥授予对控制器的访问权限。我遵循了@JosefOttosson撰写的这篇文章:当我将[Authorize]替换为[Authorize(AuthenticationSchemes=AuthenticationConstants.apikeDefaultS
我将
[Authorize][Authorize][Authorize(AuthenticationSchemes=AuthenticationConstants.apikeDefaultScheme)][Authorize(AuthenticationSchemes=AuthenticationConstants.GoogleAuthenticationScheme)]Access to XMLHttpRequest at 'https://accounts.google.com/o/oauth2/v2/auth?response_type=code&client_id=[...]
(redirected from 'https://localhost:44380/api/client/2/upload/foo')
from origin 'https://localhost:44380' has been blocked by CORS policy: Response to preflight request doesn't pass access control check: No 'Access-Control-Allow-Origin' header is present on the requested resource.
[Authorize][Authorize(AuthenticationSchemes…public void Configure(iaapplicationbuilder应用程序)app.UseRouting();
应用程序UseCors(MyAllowSpecificCorigins);
app.UseHttpsRedirection();
app.UseStaticFiles();
public void ConfigureServices(IServiceCollection services)services.AddCors(选项=>
{
options.AddPolicy(myAllowSpecificCorigins,builder=>builder
.来源(“http://localhost:44380/")
.SetIsOriginAllowed((主机)=>true)
.AllowAnyMethod()
.AllowAnyHeader());
});
在登录代码中
wait HttpContext.SignInAsync(
CookieAuthenticationDefaults.AuthenticationScheme,
新的ClaimsPrincipal(谷歌用户),
版权所有),;
[Authorize(AuthenticationSchemes=CookieAuthenticationDefaults.AuthenticationScheme)][授权(AuthenticationSchemes=AuthenticationConstants.GoogleAuthenticationScheme)]
[授权(AuthenticationSchemes=AuthenticationConstants.apikeDefaultScheme)]
[授权(AuthenticationSchemes=CookieAuthenticationDefaults.AuthenticationScheme)]
公共类元控制器:BaseApiController