首先 在serveices 方法 注册容器 告诉容器时 cookis 形势
public void ConfigureServices(IServiceCollection services)
{
services.AddControllersWithViews();
services.AddAuthentication(option =>
{
option.DefaultAuthenticateScheme = CookieAuthenticationDefaults.AuthenticationScheme;
option.DefaultChallengeScheme = CookieAuthenticationDefaults.AuthenticationScheme;
}).AddCookie(CookieAuthenticationDefaults.AuthenticationScheme, option=> {
option.LoginPath = "/home/index";
option.AccessDeniedPath = "/home/Privacy";
});
///这里是 授权 运用policy 策略 可以连接自己数据库灵活扩展
services.AddAuthorization(option =>
{
option.AddPolicy("AdminPolicy", policy => {
policy.Requirements.Add(new DoubleEmailRequirement());
});
option.AddPolicy("QQEmail", policy =>
{
policy.Requirements.Add(new DoubleEmailRequirement());
});
});
services.AddSingleton<IAuthorizationHandler, QQHander>();
services.AddSingleton<IAuthorizationHandler, Handler163>();
}
在 Configure 方法类 别忘记 添加鉴权 和授权的 中间件
app.UseAuthentication();
app.UseAuthorization()
在EmailRequirement 中继承IAuthorizationRequirement 标识 至于为什么这么做需要自己解读源码
