Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

Using Open ID Connect with Server Side Blazor

Tags:

I'd like to use Open ID Connect with Identity Server 4 for authorization in my server side Blazor application. I've got the same setup working in a MVC application.

With the newest .NET Core version, 3.0 Preview 6, it is possible to add the attribute ´@attribute [Authorize]´ to a site. But if I'm not authorized, I don't get redirected to the Identity Server to log in, as I am used from my MVC applications. Instead the site only shows the message "Not authorized".

In Startup.cs I've got the following setup:

        services.AddAuthentication(options =>
        {
            options.DefaultScheme = "Cookies";
            options.DefaultChallengeScheme = "oidc";
        })
        .AddCookie("Cookies")
        .AddOpenIdConnect("oidc", options =>
        {
            options.Authority = "http://localhost:5000";
            options.RequireHttpsMetadata = false;

            options.ClientId = "myClient";
            options.SaveTokens = true;
        });

and

        app.UseAuthentication();

How do I tell the application, that I want to be redirected to the Identity Server if I'm not logged in?

EDIT: Codevisions answer works as a workaround. I found pending github issues here and here, planned for .NET Core 3.0 Preview 7 that will possibly cover this issue officially.

like image 758
Pascal R. Avatar asked Jun 13 '19 12:06

Pascal R.

People also ask

Can OpenID connect be used for SSO?

OpenID Connect Single Sign-On (SSO) OpenID Connect (OIDC) is a protocol to verify user identities and get user profile information. OIDC enables devices to verify identities based on authentication done by an authentication server.

Is open ID connect a protocol?

OpenID Connect (OIDC) is an open authentication protocol that works on top of the OAuth 2.0 framework. Targeted toward consumers, OIDC allows individuals to use single sign-on (SSO) to access relying party sites using OpenID Providers (OPs), such as an email provider or social network, to authenticate their identities.

How do I add authentication to Blazor WebAssembly?

To create a new Blazor WebAssembly project with an authentication mechanism: After choosing the Blazor WebAssembly App template in the Create a new ASP.NET Core Web Application dialog, select Change under Authentication. Select Individual User Accounts to use ASP.NET Core's Identity system.

Is Blazor server side secure?

Blazor Server apps are configured for security in the same manner as ASP.NET Core apps.

1 Answers

Add to ConfigureServices code below.

services.AddMvcCore(options =>
{
    var policy = new AuthorizationPolicyBuilder()
        .RequireAuthenticatedUser()
        .Build();
    options.Filters.Add(new AuthorizeFilter(policy));
});
like image 57
codevision Avatar answered Nov 15 '22 04:11

codevision
Sign in to Comment

Related questions

How to perform multiple row-wise operations with dependency with previous rows using [r] data.table (if possible)
Using flutter mobile packages in flutter web
.dockerignore fails to include files in subdirectories with !**/*.extension pattern
Transform a flat list to domain objects with child objects using java streams
gremlin python - add multiple but an unknown number of properties to a vertex
git push using ssh-agent in bash but not gui
Get closest point in collider
Why does calling `make-instance` in `let` work differently?
How to redirect without flickering in React using React Router?
How to use filter conditions on SHOW PARTITIONS clause on hive?
react router's location state becomes undefined on change of route
What is the end result if I add ACTION-VIEW in my app?

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!