我们在IIS中设置了多个应用程序,其中一个应用程序处理所有应用程序的登录。该应用程序是一个asp.net 4网站,并使用表单身份验证cookie。
<authentication mode="Forms">
<forms loginUrl="~/Account/LogOn" protection="All" cookieless="UseCookies" path="/" name="CookieName" />
</authentication>
我们可以使用owin成功使用此cookie登录到asp.net 4.5应用程序。
app.UseCookieAuthentication(new CookieAuthenticationOptions
{
TicketDataFormat = new SharedTicketDataFormat(),
CookieName = "CookieName",
AuthenticationType = DefaultAuthenticationTypes.ApplicationCookie,
LoginPath = new PathString("/Account/Login"),
Provider = new CookieAuthenticationProvider
{
OnValidateIdentity =
SecurityStampValidator.OnValidateIdentity<ApplicationUserManager, ApplicationUser>(
validateInterval: TimeSpan.FromMinutes(30),
regenerateIdentity: (manager, user) => user.GenerateUserIdentityAsync(manager))
}
});
public class SharedTicketDataFormat : ISecureDataFormat<AuthenticationTicket>
{
public string Protect(AuthenticationTicket data)
{
return FormsAuthentication.Encrypt(new FormsAuthenticationTicket(data.Identity.Name, false, -1));
}
public AuthenticationTicket Unprotect(string protectedText)
{
var ticket = FormsAuthentication.Decrypt(protectedText);
var identity = new FormsIdentity(ticket);
return new AuthenticationTicket(identity, new AuthenticationProperties());
}
}
在asp.net core 2.0中,我不知道要连接该应用程序以使用共享的cookie
在Startup.cs中配置
app.UseAuthentication();
ConfigureServices
services.AddAuthentication(options =>
{
options.DefaultAuthenticateScheme = CookieAuthenticationDefaults.AuthenticationScheme;
options.DefaultChallengeScheme = CookieAuthenticationDefaults.AuthenticationScheme;
})
.AddCookie(options =>
{
options.Cookie.Name = "CookieName";
});
我的理解是,您需要从依靠机器密钥进行cookie加密转变为使用DataProtectionProvider。文档中的这篇文章非常清楚地阐明了所有内容: