Joffrey
Reputation: 260
ASP.NET Core 2 AuthenticationSchemes
There are several authentication schemes but I can't find any documentation on them. How do they differ?
options.DefaultScheme
options.DefaultChallengeScheme
options.DefaultForbidScheme
options.DefaultAuthenticateScheme
options.DefaultSignInScheme
options.DefaultSignOutScheme
Upvotes: 10
Views: 11226
Answers (1)
Yurii N.
Reputation: 5703
From here
- DefaultScheme: if specified, all the other defaults will fallback to this value
- DefaultAuthenticateScheme: if specified, AuthenticateAsync() will use this scheme, and also the AuthenticationMiddleware added by UseAuthentication() will use this scheme to set context.User automatically. (Corresponds to AutomaticAuthentication)
- DefaultChallengeScheme if specified, ChallengeAsync() will use this scheme, [Authorize] with policies that don't specify schemes will also use this
- DefaultSignInScheme is used by SignInAsync() and also by all of the remote auth schemes like Google/Facebook/OIDC/OAuth, typically this would be set to a cookie.
- DefaultSignOutScheme is used by SignOutAsync() falls back to DefaultSignInScheme
- DefaultForbidScheme is used by ForbidAsync(), falls back to DefaultChallengeScheme
So, you specify, which authentication scheme, is used in corresponding methods in IAuthenticationService
Upvotes: 38
Related Questions
- asp.net core identity and identityserver
- IdentityServer4 Asp.Net Core Identity
- asp.net core 3 and identityserver4
- ASP.Net Core 2.2 Authentication
- IdentityServer4 and ASP.NET Core 2.2 Integrating with ASP.NET Identity
- ASP.Net Core 2 authentication
- asp.net Identity authentication .net core 2.1
- Authentication/Authorization using Asp.net Core 2.1 and Identity Server 4
- ASP.NET Identity - Simplified
- Identity Server 4 Authentication