.net core cookie登录和session的 DataProtectionProvider 加入 redis

其他 2018-12-20 00:43:45 阅读次数: 0 
                string redisConnectionString = Configuration.GetSection("Storage:Redis").GetValue<string>("ConnectionString");
                string redisInstanceName = Configuration.GetSection("Storage:Redis").GetValue<string>("InstanceName");
                services.AddDistributedRedisCache(options =>
                {
                    options.Configuration = redisConnectionString;
                    options.InstanceName = redisInstanceName;
                });

                IDataProtectionBuilder dataProtectionBuilder = services.AddDataProtection()
                    .SetApplicationName("xxx")
                    .UseCryptographicAlgorithms(
                        new AuthenticatedEncryptorConfiguration()
                        {
                            EncryptionAlgorithm = EncryptionAlgorithm.AES_256_CBC,
                            ValidationAlgorithm = ValidationAlgorithm.HMACSHA256
                        })
                    .PersistKeysToRedis(ConnectionMultiplexer.Connect(redisConnectionString), "DataProtection-Keys");

                services.AddSession(options =>
                {
                    options.IdleTimeout = TimeSpan.FromMinutes(20); //session活期时间
                    options.Cookie = new CookieBuilder()
                    {
                        Name = $".{GetType().Namespace}.Session",
                        HttpOnly = true,
                    };
                });

                services.AddSingleton(HtmlEncoder.Create(UnicodeRanges.All));//中文乱码

                services.AddAuthentication(CookieAuthenticationDefaults.AuthenticationScheme)
                .AddCookie(CookieAuthenticationDefaults.AuthenticationScheme, options =>
                {
                    options.DataProtectionProvider = CreateRedisDataProtectionProvider(ConnectionMultiplexer.Connect(redisConnectionString));
                    //options.DataProtectionProvider = DataProtectionProvider.Create(new DirectoryInfo(@"C:\_sso"));
                    options.SlidingExpiration = true;
                    options.LoginPath = "/account/signin";
                    options.Cookie = new CookieBuilder()
                    {
                        HttpOnly = true,
                        Name = $".{GetType().Namespace}",
                    };
                });
        IDataProtectionProvider CreateRedisDataProtectionProvider(IConnectionMultiplexer connection)
        {
            return new ServiceCollection()
                .AddDataProtection()
                .SetApplicationName("Survey.SSO")
                .UseCryptographicAlgorithms(
                    new AuthenticatedEncryptorConfiguration()
                    {
                        EncryptionAlgorithm = EncryptionAlgorithm.AES_256_CBC,
                        ValidationAlgorithm = ValidationAlgorithm.HMACSHA256
                    })
                .PersistKeysToRedis(connection, "DataProtection-SSO-Keys")
                .Services
                .BuildServiceProvider()
                .GetRequiredService<IDataProtectionProvider>();
        }
                app.UseAuthentication();
                app.UseSession();//在UseMvc前面
                app.UseMvc();

猜你喜欢

转载自www.cnblogs.com/wintersoft/p/10147054.html
今日推荐
火速冲上 GitHub 热榜 —— 开源编程语言、框架哪有这么可爱?
北京人形机器人创新中心发布全球首个纯电驱拟人奔跑的全尺寸人形机器人“天工”
LFOSSA 源来如此公开课 | 掌握云原生未来:CNCF 认证全面攻略与备考秘籍
国产云输入法——仅华为无云端数据上传安全问题
开源日报 | 工业开源项目OGG 1.0;姐姐,你要和我一起配置火狐吗;苹果AI遥遥落后?Fedora 40
开放签电子签章:停止新增,优化体验,前进更进(五一假期前工作)
周排行
Metasploit文件目录与入侵基本概念
跨域(CORS)请求问题[No 'Access-Control-Allow-Origin' header is present on the requested resource]常见解决方案
CodeIgniter 源码解读之 CodeIgniter.php(二)
SAS入门之(四)改变数据类型
初识元组
[数学建模]数学建模算法和模型(B站视频)(二)
Nginx 服务器源码安装配置流程
C#实现语音视频录制 【基于MCapture + MFile】
开发进度4
下载安装vue的方法网址
每日归档
更多
2024-04-28(0)
2024-04-27(56)
2024-04-26(39)
2024-04-25(22)
2024-04-24(36)
2024-04-23(26)
2024-04-22(39)
2024-04-21(0)
2024-04-20(6)
2024-04-19(5)

代码天地 © 2018 codetd.com

境外服务器   最新电视剧2022