Authentication for serverside blazor #15533
Comments
floreseken
changed the title
|
@floreseken, You can use |
|
blazor.Sever to Startup.cs public void ConfigureServices(IServiceCollection services)
{
services.AddServerSideBlazor<Client.Startup>();
// HttpContextAccessor
services.AddHttpContextAccessor();
services.AddScoped<HttpContextAccessor>();
}blazor.Shared public class HttpContextAccessor
{
private readonly IHttpContextAccessor _httpContextAccessor;
public HttpContextAccessor(IHttpContextAccessor httpContextAccessor)
{
_httpContextAccessor = httpContextAccessor;
}
public HttpContext Context => _httpContextAccessor.HttpContext;
}blazor.Client to App.cshtml @inject blazor.Shared.HttpContextAccessor HttpContext
<Router AppAssembly=typeof(Program).Assembly />
@functions
{
protected override void OnInit()
{
HttpContext.Context.Request.Cookies.**
// Or data passed through middleware in blazor.Server
HttpContext.Context.Features.Get<T>()
}
} |
|
1) In |
|
Also see a GitHub example at: https://github.com/SQL-MisterMagoo/BlazorTest |
|
it worked for me !!! |
|
@cores-system , @floreseken , |
|
@carlosalcantara2668, I'm glad I helped ) |
|
I was wondering if it would be possible to use [Authorize] in Blazor 0.6.0 Server-side. Something like : In FetchData.cshtml
Thanks for the great .net core stuff guys! |
|
I think we have several issues open at this point tracking the need for guidance and support for authentication and authorization, so I'm going to close this one as a duplicate of #5472. |
|
I created a sample and a Blog post using the code provided above: A Demonstration of Simple Server-side Blazor Cookie Authentication |
ghost
locked as resolved and limited conversation to collaborators
I've read this: https://github.com/aspnet/Blazor/issues/1449
and this: https://github.com/aspnet/Blazor/issues/698
And still have some questions.
The last option (of 1449) kind of defeats the purpose of SS blazor in my opinion. This way you are losing lots of the benefits. (creating a API surface and client), but that will work.
And the first option can only be used to control access to the whole application, right? Not to identify users in the components code.
For instance, I would like to be able to use:
Thread.CurrentPrincipalin my components, but enabling authentication(in the server part) does not provide this (always null). I kind of understand why.. the SignalR stuff bypasses everything of the default stack, and provides no auth bearer or something, I guess?
In my opinion being able to use a principal in serverside blazor essential for enterprise applications.
Am I missing something? Or is this not possible yet? And is my scenario covered by 698?
Thanks
The text was updated successfully, but these errors were encountered: