科技改变生活-雨落星辰 - 所有的伟大,都源于一个勇敢的开始

    最新消息:雨落星辰是一个专注网站SEO优化、网站SEO诊断、搜索引擎研究、网络营销推广、网站策划运营及站长类的自媒体原创博客
    你的位置: 首页>programmer>identityserver4 - Is it possible that users should remain logged in until they choose to log out manually. If so - then how? - S

    identityserver4 - Is it possible that users should remain logged in until they choose to log out manually. If so - then how? - S

    programmeradmin5浏览0评论

    I need to implement the feature as Users should remain logged in until they choose to log out manually.

    I had tried this in Program.cs for session:

    builder.Services.AddSession(options => {
    options.IdleTimeout = TimeSpan.FromMinutes(60); // Set session timeout to 60 minutes or your desired duration
    options.Cookie.HttpOnly = true; // Ensure the session cookie is accessible only through HTTP
    options.Cookie.IsEssential = true; // Make the session cookie essential
});

    I need to implement the feature as Users should remain logged in until they choose to log out manually.

    I had tried this in Program.cs for session:

    builder.Services.AddSession(options => {
    options.IdleTimeout = TimeSpan.FromMinutes(60); // Set session timeout to 60 minutes or your desired duration
    options.Cookie.HttpOnly = true; // Ensure the session cookie is accessible only through HTTP
    options.Cookie.IsEssential = true; // Make the session cookie essential
});
    • identityserver4
    • asp.net-core-identity
    • asp.net-core-6.0
    Share Improve this question edited Jan 20 at 8:17 DarkBee 15.7k8 gold badges70 silver badges114 bronze badges asked Jan 20 at 4:18 Sachin TripathiSachin Tripathi 12 bronze badges
    Add a comment  | 

    1 Answer 1

    Reset to default 0

    Doing this

    builder.Services.AddSession(options => {
    options.IdleTimeout = TimeSpan.FromMinutes(60); // Set session timeout to 60 minutes or your desired duration
    options.Cookie.HttpOnly = true; // Ensure the session cookie is accessible only through HTTP
    options.Cookie.IsEssential = true; // Make the session cookie essential
});

    Has nothing to do the user login.

    You have to different expiretime to take care of. The cookie it self and the content of the cookie by controlling the ExpiresUtc.

    You can specify the lifetime of the user authentication ticket, stored inside the cookie:

    public class AccountController : Controller
{
    public async Task<IActionResult> Login()
    {
        // Example user claims
        var claims = new List<Claim>
        {
            new Claim(ClaimTypes.Name, "[email protected]"),
            new Claim(ClaimTypes.Role, "Administrator")
        };

        var claimsIdentity = new ClaimsIdentity(claims, CookieAuthenticationDefaults.AuthenticationScheme);

        // Configure authentication properties
        var authProperties = new AuthenticationProperties
        {
            IsPersistent = true, // Keeps the cookie across browser sessions
            ExpiresUtc = DateTimeOffset.UtcNow.AddMinutes(30) // Set cookie expiration
        };

        // Sign in the user
        await HttpContext.SignInAsync(
            CookieAuthenticationDefaults.AuthenticationScheme,
            new ClaimsPrincipal(claimsIdentity),
            authProperties);

        return Redirect("/");
    }
 }

    Then, you can control the lifetime of the cookie itself here

        .AddCookie(options =>
    {
        options.ExpireTimeSpan = TimeSpan.FromMinutes(60); // Default expiration time
        options.SlidingExpiration = true; // Renew cookie if active within ExpireTimeSpan
    });
    继续浏览有关 的文章

    与本文相关的文章

    发布评论

    评论列表(0)

    1. 暂无评论