具有身份验证方案的Asp .Net核心授权策略不起作用

时间:2019-06-24 00:52:01

标签: c# asp.net-core

如果我在这样的页面模型顶部定义我的authorize属性,那么它将起作用

[Authorize(AuthenticationSchemes = "ProductionAuth", Policy = "MyPolicy")]
public class IndexModel : PageModel
{
    public void OnGet() { }
}

我在启动时就定义了政策

options.AddPolicy("MyPolicy", policy =>
{
    policy.Requirements.Add(new MyPolicyRequirement());
});

现在我尝试这样做

options.AddPolicy("MyPolicy", policy =>
{
    policy.Requirements.Add(new MyPolicyRequirement());
    policy.RequireAuthenticatedUser();
    policy.AddAuthenticationSchemes("ProductionAuth");
});

services.AddMvc()
    .AddRazorPagesOptions(options =>
    {
        options.AllowAreas = true;
        options.Conventions.AuthorizeAreaFolder("Production", "/Account/Producao", "MyPolicy");
    })

每当我尝试访问该目录时,即使上下文成功,我也会被重定向以拒绝访问。...我在这里缺少什么?

0 个答案:

没有答案
相关问题
最新问题