Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

Asp.net Core Authorize Redirection Not Happening

Tags:

asp.net-core

asp.net-core-mvc

I am trying to use cookie authentication in an Asp.net core app (dnx 4.5). Note that because I have a custom authentication mechanism (radius), I am not using the out-of-the-box mechanism provided by core Authentication. When the user is not authenticated I want to redirect to a login page.

I have added in Startup.cs the following code. The idea is to be redirected to the Login Controller when the user has not been authenticated:

app.UseCookieAuthentication(options => { options.LoginPath = new Microsoft.AspNet.Http.PathString("/Login"); });

In my Home controller I have:

[Authorize]
public IActionResult Index()
{
    return View();
}

In my Login controller I return a view corresponding to the radius login form:

[AllowAnonymous]
public IActionResult Index()
{
    return View();
}

However, when I run the app, the redirect never happens. Looking at the console output I see the following:

warn: Microsoft.AspNet.Mvc.Controllers.ControllerActionInvoker[0]
      Authorization failed for the request at filter 'Microsoft.AspNet.Mvc.Filters.AuthorizeFilter'.
info: Microsoft.AspNet.Mvc.ChallengeResult[1]
      Executing ChallengeResult with authentication schemes ().
info: Microsoft.AspNet.Mvc.Infrastructure.MvcRouteHandler[2]
      Executed action ThingsProjectorWeb.Controllers.HomeController.Index in 0ms
info: Microsoft.AspNet.Hosting.Internal.HostingEngine[2]
      Request finished in 0.0016ms 401

Any help on how to configure this correctly would be greatly appreciated. Thanks!

like image 439
BigONotation Avatar asked May 01 '16 13:05

BigONotation

1 Answers

OK figured it out. It is all explained here: https://docs.asp.net/en/latest/security/authentication/cookie.html

I was missing the options.AutomaticChallenge = true;, which automatically redirects you to the Login Controller.

Here is the updated options:

app.UseCookieAuthentication(options => {
                options.LoginPath = new Microsoft.AspNet.Http.PathString("/Login");
                options.AutomaticChallenge = true;
            });

UPDATE:

As of version 1.1.0 it's:

app.UseCookieAuthentication(new CookieAuthenticationOptions
{
         LoginPath = new Microsoft.AspNetCore.Http.PathString("/Account/Login"),
         AutomaticChallenge = true
});
like image 83
BigONotation Avatar answered Oct 18 '22 02:10

BigONotation
Sign in to Comment

Related questions

how ASP.NET Core execute Linux shell command?
Serilog not creating log file when running on Linux
Data Protection provider across Asp.NET Core and Framework (generate password reset link)
How to use a custom model binder with Swashbuckle, Swagger and NSwag?
C# Web API Sending Body Data in HTTP Post REST Client
Hangfire - Multi tenant, ASP.NET Core - Resolving the correct tenant
Migrating ASP.NET MVC 5 project to ASP.NET 5
Require SSL Client Certificate only for specific routes or controllers
ASP.NET infrastructure in MediatR handlers
Authorize user based on API-key supplied in request header in ASP.NET Core
How to use a view inside ASP.NET Core custom Tag Helper?
How to get memory available or used in C# .net core / .net standard
Is running Umbraco within an ASP.NET Core API possible?
How can I stop ASP.NET Core 2.0 MVC minification from modifying a specific file?
Rendering .rdlc reports with ASP .NET Core
Check if hosting server is IIS or Kestrel at runtime in aspnet core
.net Core 2, EF and Multi Tenancy - Dbcontext switch based on user
How do I add a TypeScript definitely typed definition in ASP.NET 5?
Entity Framework 7 Migration Scaffolding in Class Library with Configuration
ASP.NET 5 Environment Name in Azure Web App

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!