我在我的网站中使用dotnet core 5和Identity进行授权。我有一个自定义类User
作为我的标识。
这是我的配置服务:
services.AddDbContext<ApplicationDbContext>(options =>
options.UseSqlServer(Configuration.GetConnectionString("DefaultConnection"), o => o.UseQuerySplittingBehavior(QuerySplittingBehavior.SplitQuery)));
services.AddDefaultIdentity<User>(e =>
{
e.Password.RequireDigit = false;
e.Password.RequireLowercase = false;
e.Password.RequireNonAlphanumeric = false;
e.Password.RequireUppercase = false;
e.Password.RequireLowercase = false;
e.Password.RequiredUniqueChars = 2;
e.Password.RequiredLength = 5;
e.SignIn.RequireConfirmedPhoneNumber = false;
e.SignIn.RequireConfirmedEmail = false;
}).AddRoles<IdentityRole>().AddRoleManager<RoleManager<IdentityRole>>()
.AddDefaultTokenProviders().AddEntityFrameworkStores<ApplicationDbContext>();
services.AddControllersWithViews();
在我的配置中,我有:
app.UseAuthentication();
app.UseAuthorization();
这是我的登录控制器:
[ValidateAntiForgeryToken]
[HttpPost("/Login")]
public async Task<IActionResult> Login(LoginViewModel model)
{
if (ModelState.IsValid)
{
var result =
await _signInManager.PasswordSignInAsync(model.UserName, model.Password, model.RememberMe, true);
if (result.Succeeded)
{
return Redirect(model.ReturnUrl);
}
else
{
ModelState.AddModelError("", "Invalid Usename or password");
return View();
}
}
else
{
return View();
}
}
但是,即使Model.RememberMe
为真,登录也不是持久的,用户需要每20分钟登录一次。我该如何解决这个问题?
尝试设置cookie的ExpireTimeSpan
。以下是将过期时间设置为1天的示例:
services.ConfigureApplicationCookie(options =>
{
options.ExpireTimeSpan = TimeSpan.FromDays(1);
});