0

Is there any way to configure a .NET core Razor Pages app to have no authentication required for the root directory, basic uid/password authentication for one subdirectory, and Azure B2C for different subdirectory:

/
/basicauth
/aadb2c

I have seen one for basic uid/password which sets the startup.cs looking like this:

services.AddMvc().AddRazorPagesOptions(options => {
    options.Conventions.AuthorizeFolder("/admin");
}).SetCompatibilityVersion(CompatibilityVersion.Version_2_2);

...and in a ones for Azure b2c looks which protect the whole app. Judging by the services configuration above, it looks like only one type of Authorization can be used. Is that correct?

Improve this question
5
  • I believe, authentication is injected at the root, and there, I think, only authentication service is allowed. hopefully, you will get additional confirmation or contradictions from others. Commented Sep 30, 2020 at 6:23
  • For one asp.net application using different auth on different folder is not provided out of box. It is possible to support multiple auth on whole app then restricting access on resources/folders based on roles or auth Commented Sep 30, 2020 at 6:38
  • Thank you. If you put this as an answer I will check it. Commented Sep 30, 2020 at 12:34
  • Agree with PranavSingh, you could use multiple auth in one application, try to use different Authentication Schemes, then, in the page, using Authorize attribute and assign the schemes, reference: Multiple authentication methods in asp.Net core 2.2, ASP.NET Core: Supporting multiple Authorization and Use multiple authentication schemes. Commented Oct 1, 2020 at 8:20
  • Done. You've convinced me. If you want to put this in an answer, I will mark it as the answer. Commented Oct 1, 2020 at 12:12

1 Answer 1

Reset to default
0

As PranavSingh said: it is possible to support multiple auth on whole app then restricting access on resources/folders based on roles or auth.

Besides, you could try to use different Authentication Schemes, then, in the page, using [Authorize] attribute and assign the schemes,

Reference:

Multiple authentication methods in asp.Net core 2.2,

ASP.NET Core: Supporting multiple Authorization

Use multiple authentication schemes.

Improve this answer
Sign up to request clarification or add additional context in comments.

Comments

Your Answer

By clicking “Post Your Answer”, you agree to our terms of service and acknowledge you have read our privacy policy.

Start asking to get answers

Find the answer to your question by asking.

Ask question

Explore related questions

See similar questions with these tags.