owin - Can IdentityServer return claims as part of authenticate request -


i implementing wsfed authentication using wsfederation plugin on top of thinktecture identityserver, got own userservice implemented authenticatelocalasync method below

public async task<authenticateresult> authenticatelocalasync(string username, string password, signinmessage message)         {             var requestviewmodel = new signinrequestviewmodel                               {                                   emailaddress = username,                                   password = password                               };              var result = await signinapplicationservice.signinasync(requestviewmodel);              var responseviewmodel = result.viewmodel;              var claims = claimbuilder.getclaims(responseviewmodel);              return new authenticateresult(                 responseviewmodel.customerid.tostring(),                 string.format("{0} {1}", responseviewmodel.firstname, responseviewmodel.lastname),                 claims);         }

this method called when login event triggered, can see authenticate users against own database repository, result built claims object referenced in authenticateresult object , return back.

so thought claims should available on client, no need make further request, makes second request getprofiledataasync method called, , based on document:

this method called whenever claims user requested (e.g. during token creation or via userinfo endpoint

which kinda of making sense, mean need call database again retrieve customer data again, , rebuild claims same did in authenticatelocalasync method?

if so, what's point pass claims in first authenticate method?

can explain please?

thanks

ming

the call getprofiledataasync has claimsprincipal. claims put there in authentication stage should on principal. no need db roundtrip.

if claims not found there, bug , should open issue on issue tracker.


Comments

Post a Comment

Popular posts from this blog

javascript - AngularJS custom datepicker directive -

i make custom datepicker directive custom template. but have no idea how start building it... how include date data directive? i appreciate guide or give me advice work on more precisely. it might you! follow below steps html code sample: <label>birth date</label> <input type="text" ng-model="birthdate" date-options="dateoptions" custom-datepicker/> <hr/> <pre>birthdate = {{birthdate}}</pre> <script type="text/ng-template" id="custom-datepicker.html"> <div class="enhanced-datepicker"> <div class="proxied-field-wrap"> <input type="text" ui-date-format="yy-mm-dd" ng-model="ngmodel" ui-date="dateoptions"/> </div> <label> <button class="btn" type="button"><i class="icon-calendar"></i>
Read more

javascript - jQuery date picker - Disable dates after the selection from the first date picker -

<!doctype html> <html lang="en"> <head> <meta charset="utf-8"> <title>jquery ui datepicker - default functionality</title> <link rel="stylesheet" href="//code.jquery.com/ui/1.11.4/themes/smoothness/jquery-ui.css"> <script src="//code.jquery.com/jquery-1.10.2.js"></script> <script src="//code.jquery.com/ui/1.11.4/jquery-ui.js"></script> <link rel="stylesheet" href="/resources/demos/style.css"> <script> $(function () { $("#datepicker1").datepicker(); }); </script> <script> $(function () { $("#datepicker2").datepicker(); }); </script> </head> <body> <p>date 1: <input type="text" id="datepicker1"></p> <p>date 2: <input type="t
Read more