React to Authentication changes.

2015-10-15 09:35:48 -07:00 · 2015-10-15 09:35:48 -07:00 · d2835b6d22
parent a494885e3f
commit d2835b6d22
1 changed files with 3 additions and 3 deletions
--- a/src/Microsoft.AspNet.Server.WebListener/AuthenticationHandler.cs
+++ b/src/Microsoft.AspNet.Server.WebListener/AuthenticationHandler.cs
@ -68,12 +68,12 @@ namespace Microsoft.AspNet.Server.WebListener

        public Task ChallengeAsync(ChallengeContext context)
        {
-            var hasEmptyChallenge = string.IsNullOrEmpty(context.AuthenticationScheme);
+            var automaticChallenge = string.Equals("Automatic", context.AuthenticationScheme, StringComparison.Ordinal);
            foreach (var scheme in ListEnabledAuthSchemes())
            {
                var authScheme = scheme.ToString();
                // Not including any auth types means it's a blanket challenge for any auth type.
-                if (hasEmptyChallenge || string.Equals(context.AuthenticationScheme, authScheme, StringComparison.Ordinal))
+                if (automaticChallenge || string.Equals(context.AuthenticationScheme, authScheme, StringComparison.Ordinal))
                {
                    switch (context.Behavior)
                    {
@ -89,7 +89,7 @@ namespace Microsoft.AspNet.Server.WebListener
                        case ChallengeBehavior.Automatic:
                            var identity = (ClaimsIdentity)_requestContext.User?.Identity;
                            if (identity != null && identity.IsAuthenticated
-                                && (hasEmptyChallenge || string.Equals(identity.AuthenticationType, context.AuthenticationScheme, StringComparison.Ordinal)))
+                                && (automaticChallenge || string.Equals(identity.AuthenticationType, context.AuthenticationScheme, StringComparison.Ordinal)))
                            {
                                _requestContext.Response.StatusCode = 403;
                                context.Accept();