C# 如何将新添加的声明持久化到Asp.NETCore3.1中现有的HttpContext用户
我是.Net Core新手,在Startup.cs文件中配置了如下身份验证-C# 如何将新添加的声明持久化到Asp.NETCore3.1中现有的HttpContext用户,c#,asp.net-core,model-view-controller,C#,Asp.net Core,Model View Controller,我是.Net Core新手,在Startup.cs文件中配置了如下身份验证- public void ConfigureServices(IServiceCollection services) { // To be able to access HttpContext services.AddSingleton<IHttpContextAccessor, HttpContextAccessor>();
public void ConfigureServices(IServiceCollection services)
{
// To be able to access HttpContext
services.AddSingleton<IHttpContextAccessor, HttpContextAccessor>();
services.AddAuthentication(CookieAuthenticationDefaults.AuthenticationScheme).AddCookie(o => o.LoginPath = "/login");
// Most of the code removed for brevity
}
如何使这些新添加的声明在进一步的请求中持久化?只有在再次调用
SignInAsyncvar authProperties=新的AuthenticationProperties
{
IssuedUtc=DateTimeOffset.UtcNow,
ExpiresUtc=DateTimeOffset.UtcNow.AddHours(1),
ispersist=false,
};
等待httpContext.SignInAsync(
CookieAuthenticationDefaults.AuthenticationScheme,
_httpContextAccessor.HttpContext.User,
版权所有),;
ClaimsPrincipalSignInAsyncAuthenticationSchemeClaimsPrincipalClaimsPrincipalpublic async Task AddPortalToCurrentUserClaimsAsync(Guid companyUid, Guid userUid)
{
var portal = await _unitOfWork.Portals.All().FirstOrDefaultAsync(p => p.CompanyUid == companyUid && p.UserUid == userUid).ConfigureAwait(false);
if (portal == null) return;
var claims = new List<Claim>
{
new Claim(ClaimTypes.NameIdentifier, userUid.ToString()),
new Claim(CustomClaimTypes.CompanyGuid, companyUid.ToString()),
new Claim(CustomClaimTypes.PortalId, portal.Id.ToString()),
new Claim(CustomClaimTypes.PortalName, portal.Name)
};
var authProperties = new AuthenticationProperties
{
IssuedUtc = DateTimeOffset.UtcNow,
ExpiresUtc = DateTimeOffset.UtcNow.AddHours(1),
IsPersistent = false
};
const string authenticationType = "Cookies";
var claimsIdentity = new ClaimsIdentity(claims, authenticationType);
await _httpContextAccessor.HttpContext.SignInAsync(authenticationType, new ClaimsPrincipal(claimsIdentity), authProperties);
}
登录后,我将添加更多索赔。我尝试了您的签名,但得到的错误是当principal.Identity.IsAuthenticated为false时,当AuthenticationOptions.RequireAuthenticatedSignIn为true时不允许签名同步。^^显示该错误的可能性最大,因为在登录之前调用了AddPortalToCurrentUserClaimsAsync。或者,当用户未登录时。我会根据某些条件(有时不是)在AuthenticateSarAsync之后立即运行AddPortalToCurrentUserClaimsAsync。如果要修改
AuthenticateSarAsyncpublic async Task AddPortalToCurrentUserClaimsAsync(Guid companyUid, Guid userUid)
{
var portal = await _unitOfWork.Portals.All().FirstOrDefaultAsync(p => p.CompanyUid == companyUid && p.UserUid == userUid).ConfigureAwait(false);
if (portal == null) return;
var claims = new List<Claim>
{
new Claim(CustomClaimTypes.PortalId, portal.Id.ToString()),
new Claim(CustomClaimTypes.PortalName, portal.Name)
};
var claimsIdentity = new ClaimsIdentity(claims);
_httpContextAccessor.HttpContext.User.AddIdentity(claimsIdentity);
}
var portalId = _httpContextAccessor.HttpContext.User.FindFirst(CustomClaimTypes.PortalId);
var portalName = _httpContextAccessor.HttpContext.User.FindFirst(CustomClaimTypes.PortalName);
public async Task AddPortalToCurrentUserClaimsAsync(Guid companyUid, Guid userUid)
{
var portal = await _unitOfWork.Portals.All().FirstOrDefaultAsync(p => p.CompanyUid == companyUid && p.UserUid == userUid).ConfigureAwait(false);
if (portal == null) return;
var claims = new List<Claim>
{
new Claim(ClaimTypes.NameIdentifier, userUid.ToString()),
new Claim(CustomClaimTypes.CompanyGuid, companyUid.ToString()),
new Claim(CustomClaimTypes.PortalId, portal.Id.ToString()),
new Claim(CustomClaimTypes.PortalName, portal.Name)
};
var authProperties = new AuthenticationProperties
{
IssuedUtc = DateTimeOffset.UtcNow,
ExpiresUtc = DateTimeOffset.UtcNow.AddHours(1),
IsPersistent = false
};
const string authenticationType = "Cookies";
var claimsIdentity = new ClaimsIdentity(claims, authenticationType);
await _httpContextAccessor.HttpContext.SignInAsync(authenticationType, new ClaimsPrincipal(claimsIdentity), authProperties);
}