我在Web API 2中设置了承载令牌认证,我不明白承载令牌在服务器端的存储方式(或在哪里).这是相关代码:
启动:
public partial class Startup
{
public static OAuthAuthorizationServerOptions OAuthOptions { get; private set; }
public static Func<UserManager<IdentityUser>> UserManagerFactory { get; set; }
public static string PublicClientId { get; private set; }
static Startup()
{
PublicClientId = "self";
UserManagerFactory = () => new UserManager<IdentityUser>(new UserStore<IdentityUser>());
OAuthOptions = new OAuthAuthorizationServerOptions
{
TokenEndpointPath = new PathString("/Token"),
Provider = new ApplicationOAuthProvider(PublicClientId, UserManagerFactory),
AuthorizeEndpointPath = new PathString("/api/Account/ExternalLogin"),
AccessTokenExpireTimeSpan = TimeSpan.FromDays(14),
AllowInsecureHttp = true
};
}
public void ConfigureAuth(IAppBuilder app)
{
// …我在ASP.NET MVC 5中创建了一个应用程序.现在我需要在服务器上部署应用程序.部署时,我现有的密码是否可以在ASP.NET Identity 2中使用?或者我是否需要使用与客户端计算机相同的机器密钥?