一、异常信息描述

错误信息,看到这个页面是否耳熟能详担又不知道怎么解决 ,坑死个人不偿命,,,,,,,,

二、处理方法

1、在web项目中增加类SameSiteCookiesServiceCollectionExtensions.cs

public static class SameSiteCookiesServiceCollectionExtensions

    {

        /// <summary>

        /// -1 defines the unspecified value, which tells ASPNET Core to NOT

        /// send the SameSite attribute. With ASPNET Core 3.1 the

        /// <seealso cref="SameSiteMode" /> enum will have a definition for

        /// Unspecified.

        /// </summary>

        private const SameSiteMode Unspecified = (SameSiteMode)(-1);

        /// <summary>

        /// Configures a cookie policy to properly set the SameSite attribute

        /// for Browsers that handle unknown values as Strict. Ensure that you

        /// add the <seealso cref="Microsoft.AspNetCore.CookiePolicy.CookiePolicyMiddleware" />

        /// into the pipeline before sending any cookies!

        /// </summary>

        /// <remarks>

        /// Minimum ASPNET Core Version required for this code:

        ///   - 2.1.14

        ///   - 2.2.8

        ///   - 3.0.1

        ///   - 3.1.0-preview1

        /// Starting with version 80 of Chrome (to be released in February 2020)

        /// cookies with NO SameSite attribute are treated as SameSite=Lax.

        /// In order to always get the cookies send they need to be set to

        /// SameSite=None. But since the current standard only defines Lax and

        /// Strict as valid values there are some browsers that treat invalid

        /// values as SameSite=Strict. We therefore need to check the browser

        /// and either send SameSite=None or prevent the sending of SameSite=None.

        /// Relevant links:

        /// - https://tools.ietf.org/html/draft-west-first-party-cookies-07#section-4.1

        /// - https://tools.ietf.org/html/draft-west-cookie-incrementalism-00

        /// - https://www.chromium.org/updates/same-site

        /// - https://devblogs.microsoft.com/aspnet/upcoming-samesite-cookie-changes-in-asp-net-and-asp-net-core/

        /// - https://bugs.webkit.org/show_bug.cgi?id=198181

        /// </remarks>

        /// <param name="services">The service collection to register <see cref="CookiePolicyOptions" /> into.</param>

        /// <returns>The modified <see cref="IServiceCollection" />.</returns>

        public static IServiceCollection ConfigureNonBreakingSameSiteCookies(this IServiceCollection services)

        {

            services.Configure<CookiePolicyOptions>(options =>

            {

                options.MinimumSameSitePolicy = Unspecified;

                options.OnAppendCookie = cookieContext =>

                   CheckSameSite(cookieContext.Context, cookieContext.CookieOptions);

                options.OnDeleteCookie = cookieContext =>

                   CheckSameSite(cookieContext.Context, cookieContext.CookieOptions);

            });

            return services;

        }

        private static void CheckSameSite(HttpContext httpContext, CookieOptions options)

        {

            if (options.SameSite == SameSiteMode.None)

            {

                var userAgent = httpContext.Request.Headers["User-Agent"].ToString();

                if (DisallowsSameSiteNone(userAgent))

                {

                    options.SameSite = Unspecified;

                }

                else

                {

                    options.SameSite = SameSiteMode.Lax;  // 增加这句

                }

            }

        }

        /// <summary>

        /// Checks if the UserAgent is known to interpret an unknown value as Strict.

        /// For those the <see cref="CookieOptions.SameSite" /> property should be

        /// set to <see cref="Unspecified" />.

        /// </summary>

        /// <remarks>

        /// This code is taken from Microsoft:

        /// https://devblogs.microsoft.com/aspnet/upcoming-samesite-cookie-changes-in-asp-net-and-asp-net-core/

        /// </remarks>

        /// <param name="userAgent">The user agent string to check.</param>

        /// <returns>Whether the specified user agent (browser) accepts SameSite=None or not.</returns>

        private static bool DisallowsSameSiteNone(string userAgent)

        {

            // Cover all iOS based browsers here. This includes:

            //   - Safari on iOS 12 for iPhone, iPod Touch, iPad

            //   - WkWebview on iOS 12 for iPhone, iPod Touch, iPad

            //   - Chrome on iOS 12 for iPhone, iPod Touch, iPad

            // All of which are broken by SameSite=None, because they use the

            // iOS networking stack.

            // Notes from Thinktecture:

            // Regarding https://caniuse.com/#search=samesite iOS versions lower

            // than 12 are not supporting SameSite at all. Starting with version 13

            // unknown values are NOT treated as strict anymore. Therefore we only

            // need to check version 12.

            if (userAgent.Contains("CPU iPhone OS 12")

               || userAgent.Contains("iPad; CPU OS 12"))

            {

                return true;

            }

            // Cover Mac OS X based browsers that use the Mac OS networking stack.

            // This includes:

            //   - Safari on Mac OS X.

            // This does not include:

            //   - Chrome on Mac OS X

            // because they do not use the Mac OS networking stack.

            // Notes from Thinktecture:

            // Regarding https://caniuse.com/#search=samesite MacOS X versions lower

            // than 10.14 are not supporting SameSite at all. Starting with version

            // 10.15 unknown values are NOT treated as strict anymore. Therefore we

            // only need to check version 10.14.

            if (userAgent.Contains("Safari")

               && userAgent.Contains("Macintosh; Intel Mac OS X 10_14")

               && userAgent.Contains("Version/"))

            {

                return true;

            }

            // Cover Chrome 50-69, because some versions are broken by SameSite=None

            // and none in this range require it.

            // Note: this covers some pre-Chromium Edge versions,

            // but pre-Chromium Edge does not require SameSite=None.

            // Notes from Thinktecture:

            // We can not validate this assumption, but we trust Microsofts

            // evaluation. And overall not sending a SameSite value equals to the same

            // behavior as SameSite=None for these old versions anyways.

            if (userAgent.Contains("Chrome/5") || userAgent.Contains("Chrome/6"))

            {

                return true;

            }

            return false;

        }

    }

2、Startup.cs类ConfigureServices方法中添加如下配置

services.ConfigureNonBreakingSameSiteCookies();

参考链接:http://t.zoukankan.com/wjx-blog-p-14803501.html

https://www.thinktecture.com/en/identityserver/prepare-your-identityserver/

identity server4 授权成功页面跳转时遇到错误:Exception: Correlation failed. Unknown location的解决方法的更多相关文章

  1. SSH连接时出现Host key verification failed的原因及解决方法

    SSH连接的时候Host key verification failed. [root@cache001 swftools-0.9.0]# ssh 192.168.1.90@@@@@@@@@@@@@@ ...

  2. 页面跳转时,url 传大数据的参数不全的问题+序列化对象

    1.页面跳转时,url 传大数据的参数不全的问题 //传参: url: '/pages/testOfPhysical/shareEvaluation?detailInfo=' +encodeURICo ...

  3. 微信小程序:页面跳转时传递数据到另一个页面

    一.功能描述 页面跳转时,同时把当前页面的数据传递给跳转的目标页面,并在跳转后的目标页面进行展示 二.功能实现 1. 代码实现 test1页面 // pages/test1/test1.js Page ...

  4. 自定制页面跳转时携带原搜索参数的URL

    介绍 django自带反向解析生成URL的功能,目的是避免硬编码,较少代码维护的代价. 前端页面使用模板语法,如:{% url "rbac: request menu_list" ...

  5. jQuery Mobile页面跳转后未加载外部JS原因分析及解决

    在使用jQuery Mobile进行Web开发中,当页面跳转时(pageA => pageB),在pageB中引用的JS并未成功运行.因为,JQM并为将整个页面加载到当前的dom中,仅将data ...

  6. springmvc使用路径变量后再进行页面跳转会出现路径错误问题

    学习<Servlet.JSP和SpringMVC学习指南>遇到的一个问题,记录下. 项目代码 现象 @RequestMapping(value = "/book_edit/{id ...

  7. Navicat连接数据库成功,新建查询时提示错误“Cannot create file ……”

    Navicat连接数据库成功,新建查询时提示错误"Cannot create file --" 原因:编辑连接{高级}<设置位置>被修改,该oci.dll不正确 解决方 ...

  8. CAS (10) —— JBoss EAP 6.4下部署CAS时出现错误exception.message=Error decoding flow execution的解决办法

    CAS (10) -- JBoss EAP 6.4下部署CAS时出现错误exception.message=Error decoding flow execution的解决办法 jboss版本: jb ...

  9. Navicat for MySQL打开链接时出错错误为:2005 - Unknown MySQL server host 'localhost'(0)?

    问题:Navicat for MySQL打开链接时出错错误为:2005 - Unknown MySQL server host 'localhost'(0)? 在使用navicat 连接mysql数据 ...

随机推荐

  1. 什么是边缘CDN和虚拟CDN (vCDN)?

    关注「开源Linux」,选择"设为星标" 回复「学习」,有我为您特别筛选的学习资料~ 如今CDN有哪些局限性? 现如今,内容和游戏提供商正面临着越来越大的压力,它们需要向最终用户提 ...

  2. .NET混合开发解决方案11 WebView2加载的网页中JS调用C#方法

    系列目录     [已更新最新开发文章,点击查看详细] WebView2控件应用详解系列博客 .NET桌面程序集成Web网页开发的十种解决方案 .NET混合开发解决方案1 WebView2简介 .NE ...

  3. SQL注入靶场

    靶场搭建 系统环境&工具 环境采用centos7的版本(纯命令行),采用一键部署平台,phpstudy工具,安装教程链接:https://www.xp.cn/linux.html#instal ...

  4. 【面试普通人VS高手】Spring 中Bean的作用域有哪些?

    一个工作3年的小伙子,去面试被问到Spring里面的问题. 这个问题比较简单,但是他却没有回答上来. 虽然他可以通过搜索引擎找到答案,但是如果没有理解,下次面试还是不会! 这个面试题是: " ...

  5. python 通过线上API查询ip归属地

    API为国外API,频率限制1分钟45个ip 脚本如下 1 #!/usr/bin/env python3 2 #-*-coding:utf-8-*- 3 4 import requests,re,js ...

  6. 揭秘华为云GaussDB(for Influx):数据直方图

    摘要:本文带您了解直方图在不同产品中的实现,以及GaussDB(for Influx)中直方图的使用方法. 本文分享自华为云社区<华为云GaussDB(for Influx)揭秘第九期:最佳实践 ...

  7. Spring Security之用户名+密码登录

    自定义用户认证逻辑 处理用户信息获取逻辑 实现UserDetailsService接口 @Service public class MyUserDetailsService implements Us ...

  8. linux篇-linux LAMP yum版安装

    LAMP(linux.apache.mysql.php),是四个套件的合成,简单讲就是要把php运行在linux上,需要依赖apache和mysql数据库. 1 准备好一个linux系统(centos ...

  9. 好客租房3-React的基本使用

    2.1React的安装 安装命令:npm i react react-dom react 包是核心,提供创建元素,组件等功能 react-dom包提供DOM相关功能等 2.2React的使用 1引入r ...

  10. unity---存档方法PlayerPrefs

    存档方法 PlayerPrefs 利用键值对的存储方式 存值的方法: PlayerPrefs.SetString("Name",t);//SetInt,SetFloat 取值的方法 ...