问题描述
我将 Adal 与 Azure Active Directory 一起使用,我需要通过自定义 OwinMiddleware 添加额外的声明.当我向该主体添加声明时,我可以在当前请求中访问它们.但刷新页面后,声明消失了.
I am using Adal with Azure Active Directory and I need to add extra claims via custom OwinMiddleware. When I add claims to this principal, I am able to access them in the current request. But after a page refresh, the claim is gone.
我以为 Owin 处理了声明的序列化并将其放入 cookie 本身,但事实并非如此.
I thought Owin handled serialization of claims and put it into a cookie itself, but this doesn't seem to be the case.
我添加声明如下:
var claimsIdentity = (ClaimsIdentity) ClaimsPrincipal.Current.Identity;
if (!claimsIdentity.IsAuthenticated) return;
var identity = new ClaimsIdentity(claimsIdentity);
var currentTenantClaim = GetTenantClaim();
if (currentTenantClaim != null)
claimsIdentity.RemoveClaim(currentTenantClaim);
claimsIdentity.AddClaim(new Claim(ClaimTypes.CurrentTenantId, id));
context.Authentication.AuthenticationResponseGrant = new AuthenticationResponseGrant
(new ClaimsPrincipal(identity), new AuthenticationProperties {IsPersistent = true});
关于如何将新的声明持久化到 cookie 上有什么想法吗?
Any ideas on how to persist the new claims to the cookie?
推荐答案
我已将声明添加到错误的身份.必须将它们添加到身份变量而不是 claimIdentity.
I've added the claims to the wrong Identity. They had to be added to the identity variable instead of the claimsIdentity.
工作代码:
var claimsIdentity = (ClaimsIdentity) context.Authentication.User.Identity;
if (!claimsIdentity.IsAuthenticated) return;
var identity = new ClaimsIdentity(claimsIdentity);
var currentTenantClaim = GetTenantClaim(identity);
if (currentTenantClaim != null)
identity.RemoveClaim(currentTenantClaim);
identity.AddClaim(new Claim(ClaimTypes.CurrentTenantId, id));
context.Authentication.AuthenticationResponseGrant = new AuthenticationResponseGrant
(new ClaimsPrincipal(identity), new AuthenticationProperties {IsPersistent = true});
这篇关于更新 ClaimsPrincipal 中的声明的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持跟版网!