一、异常信息描述

错误信息,看到这个页面是否耳熟能详担又不知道怎么解决 ,坑死个人不偿命,,,,,,,,

二、处理方法

1、在web项目中增加类SameSiteCookiesServiceCollectionExtensions.cs

public static class SameSiteCookiesServiceCollectionExtensions

    {

        /// <summary>

        /// -1 defines the unspecified value, which tells ASPNET Core to NOT

        /// send the SameSite attribute. With ASPNET Core 3.1 the

        /// <seealso cref="SameSiteMode" /> enum will have a definition for

        /// Unspecified.

        /// </summary>

        private const SameSiteMode Unspecified = (SameSiteMode)(-1);

        /// <summary>

        /// Configures a cookie policy to properly set the SameSite attribute

        /// for Browsers that handle unknown values as Strict. Ensure that you

        /// add the <seealso cref="Microsoft.AspNetCore.CookiePolicy.CookiePolicyMiddleware" />

        /// into the pipeline before sending any cookies!

        /// </summary>

        /// <remarks>

        /// Minimum ASPNET Core Version required for this code:

        ///   - 2.1.14

        ///   - 2.2.8

        ///   - 3.0.1

        ///   - 3.1.0-preview1

        /// Starting with version 80 of Chrome (to be released in February 2020)

        /// cookies with NO SameSite attribute are treated as SameSite=Lax.

        /// In order to always get the cookies send they need to be set to

        /// SameSite=None. But since the current standard only defines Lax and

        /// Strict as valid values there are some browsers that treat invalid

        /// values as SameSite=Strict. We therefore need to check the browser

        /// and either send SameSite=None or prevent the sending of SameSite=None.

        /// Relevant links:

        /// - https://tools.ietf.org/html/draft-west-first-party-cookies-07#section-4.1

        /// - https://tools.ietf.org/html/draft-west-cookie-incrementalism-00

        /// - https://www.chromium.org/updates/same-site

        /// - https://devblogs.microsoft.com/aspnet/upcoming-samesite-cookie-changes-in-asp-net-and-asp-net-core/

        /// - https://bugs.webkit.org/show_bug.cgi?id=198181

        /// </remarks>

        /// <param name="services">The service collection to register <see cref="CookiePolicyOptions" /> into.</param>

        /// <returns>The modified <see cref="IServiceCollection" />.</returns>

        public static IServiceCollection ConfigureNonBreakingSameSiteCookies(this IServiceCollection services)

        {

            services.Configure<CookiePolicyOptions>(options =>

            {

                options.MinimumSameSitePolicy = Unspecified;

                options.OnAppendCookie = cookieContext =>

                   CheckSameSite(cookieContext.Context, cookieContext.CookieOptions);

                options.OnDeleteCookie = cookieContext =>

                   CheckSameSite(cookieContext.Context, cookieContext.CookieOptions);

            });

            return services;

        }

        private static void CheckSameSite(HttpContext httpContext, CookieOptions options)

        {

            if (options.SameSite == SameSiteMode.None)

            {

                var userAgent = httpContext.Request.Headers["User-Agent"].ToString();

                if (DisallowsSameSiteNone(userAgent))

                {

                    options.SameSite = Unspecified;

                }

                else

                {

                    options.SameSite = SameSiteMode.Lax;  // 增加这句

                }

            }

        }

        /// <summary>

        /// Checks if the UserAgent is known to interpret an unknown value as Strict.

        /// For those the <see cref="CookieOptions.SameSite" /> property should be

        /// set to <see cref="Unspecified" />.

        /// </summary>

        /// <remarks>

        /// This code is taken from Microsoft:

        /// https://devblogs.microsoft.com/aspnet/upcoming-samesite-cookie-changes-in-asp-net-and-asp-net-core/

        /// </remarks>

        /// <param name="userAgent">The user agent string to check.</param>

        /// <returns>Whether the specified user agent (browser) accepts SameSite=None or not.</returns>

        private static bool DisallowsSameSiteNone(string userAgent)

        {

            // Cover all iOS based browsers here. This includes:

            //   - Safari on iOS 12 for iPhone, iPod Touch, iPad

            //   - WkWebview on iOS 12 for iPhone, iPod Touch, iPad

            //   - Chrome on iOS 12 for iPhone, iPod Touch, iPad

            // All of which are broken by SameSite=None, because they use the

            // iOS networking stack.

            // Notes from Thinktecture:

            // Regarding https://caniuse.com/#search=samesite iOS versions lower

            // than 12 are not supporting SameSite at all. Starting with version 13

            // unknown values are NOT treated as strict anymore. Therefore we only

            // need to check version 12.

            if (userAgent.Contains("CPU iPhone OS 12")

               || userAgent.Contains("iPad; CPU OS 12"))

            {

                return true;

            }

            // Cover Mac OS X based browsers that use the Mac OS networking stack.

            // This includes:

            //   - Safari on Mac OS X.

            // This does not include:

            //   - Chrome on Mac OS X

            // because they do not use the Mac OS networking stack.

            // Notes from Thinktecture:

            // Regarding https://caniuse.com/#search=samesite MacOS X versions lower

            // than 10.14 are not supporting SameSite at all. Starting with version

            // 10.15 unknown values are NOT treated as strict anymore. Therefore we

            // only need to check version 10.14.

            if (userAgent.Contains("Safari")

               && userAgent.Contains("Macintosh; Intel Mac OS X 10_14")

               && userAgent.Contains("Version/"))

            {

                return true;

            }

            // Cover Chrome 50-69, because some versions are broken by SameSite=None

            // and none in this range require it.

            // Note: this covers some pre-Chromium Edge versions,

            // but pre-Chromium Edge does not require SameSite=None.

            // Notes from Thinktecture:

            // We can not validate this assumption, but we trust Microsofts

            // evaluation. And overall not sending a SameSite value equals to the same

            // behavior as SameSite=None for these old versions anyways.

            if (userAgent.Contains("Chrome/5") || userAgent.Contains("Chrome/6"))

            {

                return true;

            }

            return false;

        }

    }

2、Startup.cs类ConfigureServices方法中添加如下配置

services.ConfigureNonBreakingSameSiteCookies();

参考链接:http://t.zoukankan.com/wjx-blog-p-14803501.html

https://www.thinktecture.com/en/identityserver/prepare-your-identityserver/

identity server4 授权成功页面跳转时遇到错误:Exception: Correlation failed. Unknown location的解决方法的更多相关文章

  1. SSH连接时出现Host key verification failed的原因及解决方法

    SSH连接的时候Host key verification failed. [root@cache001 swftools-0.9.0]# ssh 192.168.1.90@@@@@@@@@@@@@@ ...

  2. 页面跳转时,url 传大数据的参数不全的问题+序列化对象

    1.页面跳转时,url 传大数据的参数不全的问题 //传参: url: '/pages/testOfPhysical/shareEvaluation?detailInfo=' +encodeURICo ...

  3. 微信小程序:页面跳转时传递数据到另一个页面

    一.功能描述 页面跳转时,同时把当前页面的数据传递给跳转的目标页面,并在跳转后的目标页面进行展示 二.功能实现 1. 代码实现 test1页面 // pages/test1/test1.js Page ...

  4. 自定制页面跳转时携带原搜索参数的URL

    介绍 django自带反向解析生成URL的功能,目的是避免硬编码,较少代码维护的代价. 前端页面使用模板语法,如:{% url "rbac: request menu_list" ...

  5. jQuery Mobile页面跳转后未加载外部JS原因分析及解决

    在使用jQuery Mobile进行Web开发中,当页面跳转时(pageA => pageB),在pageB中引用的JS并未成功运行.因为,JQM并为将整个页面加载到当前的dom中,仅将data ...

  6. springmvc使用路径变量后再进行页面跳转会出现路径错误问题

    学习<Servlet.JSP和SpringMVC学习指南>遇到的一个问题,记录下. 项目代码 现象 @RequestMapping(value = "/book_edit/{id ...

  7. Navicat连接数据库成功,新建查询时提示错误“Cannot create file ……”

    Navicat连接数据库成功,新建查询时提示错误"Cannot create file --" 原因:编辑连接{高级}<设置位置>被修改,该oci.dll不正确 解决方 ...

  8. CAS (10) —— JBoss EAP 6.4下部署CAS时出现错误exception.message=Error decoding flow execution的解决办法

    CAS (10) -- JBoss EAP 6.4下部署CAS时出现错误exception.message=Error decoding flow execution的解决办法 jboss版本: jb ...

  9. Navicat for MySQL打开链接时出错错误为:2005 - Unknown MySQL server host 'localhost'(0)?

    问题:Navicat for MySQL打开链接时出错错误为:2005 - Unknown MySQL server host 'localhost'(0)? 在使用navicat 连接mysql数据 ...

随机推荐

  1. 虚拟机VMware 安装centos、常规配置、共享文件等

    安装centos7[通过vm来安装运行centos7] 一.准备工作 1.centos7 的安装镜像下载链接:http://isoredirect.centos.org/centos/7/isos/x ...

  2. Water 2.6.3 发布,一站式服务治理平台

    Water(水孕育万物...) Water 为项目开发.服务治理,提供一站式解决方案(可以理解为微服务架构支持套件).基于 Solon 框架开发,并支持完整的 Solon Cloud 规范:已在生产环 ...

  3. 什么叫做 SSO

    什么叫做 SSO 本文写于 2020 年 12 月 8 日 SSO 的全称叫做 Single Sign On,意味「单点登录」. 何为单点登录?就是你希望自己的两个网站,可以做到:一个网站登录了,另一 ...

  4. 一文看懂 ZooKeeper ,面试再也不用背八股(文末送PDF)

    ZooKeeper知识点总结 一.ZooKeeper 的工作机制 二.ZooKeeper 中的 ZAB 协议 三.数据模型与监听器 四.ZooKeeper 的选举机制和流程 本文将以如下内容为主线讲解 ...

  5. linux篇-linux面试题汇总

    Linux经典面试题,看看你会几题? 1. 在Linux系统中,以 文件 方式访问设备 . 2. Linux内核引导时,从文件 /etc/fstab 中读取要加载的文件系统. 3. Linux文件系统 ...

  6. 138_Power BI&Power Pivot特殊半累加度量

    博客:www.jiaopengzi.com 焦棚子的文章目录 请点击下载附件 一.背景 半累加度量(semi-additive measure),在DAX建模分析的时候经常遇见:应用场景诸如银行存款. ...

  7. python之模块(hashlib、logging)

    hashlib模块 加密的概念 加密,是以某种特殊的算法改变原有的数据,当其他人获得数据时,也无法了解数据的内容.简单的来说,就是将明文(人看得懂)数据通过一些手段变成密文数据(人看不懂),密文数据的 ...

  8. 面试突击54:MySQL 常用引擎有哪些?

    MySQL 有很多存储引擎(也叫数据引擎),所谓的存储引擎是指用于存储.处理和保护数据的核心服务.也就是存储引擎是数据库的底层软件组织.在 MySQL 中可以使用"show engines& ...

  9. React项目配置npm run build命令分环境打包

    使用create-react-app脚手架创建的项目默认隐藏了webpack等配置文件信息,使用npm run eject命令暴露这些隐藏的配置文件信息 项目默认有两个环境:开发环境(npm star ...

  10. c++ RMQ

    关于 RMQ ,即 Range Maxnum (Minnum) Query .用于查询静态区间最大(最小)值, 思路基于动态规划 (DP) 思路 设 F[i][j] 为 [i,i+2j] 区间内的的最 ...