由于其中web托管IdentityServer3的只处理一个场景的授权的,是由外部的定制服务处理用户认证,什么是落实以支持这一要求?自定义OWIN中间件?
Given a scenario where a web hosted IdentityServer3 only handles authorization, being user authentication handled by an external custom service, what is required to implement to support this? A custom OWIN middleware?
推荐答案可以连接到你的外部定制服务的形式你IUserService内(idsrv特定的) - 或者把它作为一个外部标识提供者。在这种情况下,你需要写一个卡塔纳认证中间件它(可复用的武士刀组件)。
Either connect to your "external custom service" form within your IUserService (idsrv specific) - or treat it as an external identity provider. In that case you need to write a Katana authentication middleware for it (reusable Katana component).
有关将UserService检查IdentityServer文档。对于武士刀认证的中间件 - 不知道是否有针对官方文档 - 我是覆盖它简单地在我的Web API的安全性当然
For the UserService check the IdentityServer docs. For Katana authentication middleware - not sure if there is official documentation for that - I covered that briefly it in my Web API security course.
www.pluralsight/courses/webapi-v2-security
更多推荐
IdentityServer3与外部用户管理
发布评论