Cookie Authentication expiring too soon in ASP.NET Core

by

I know that is too late for answering this question, but for whom facing this.
The IIS reset pool every 20 minutes and every 20 mins ASP.NET generate new key for protect cookie values (Authentication and Session). to prevent this, add following code to ConfigureServices in Startup class

services.AddDataProtection()
                .PersistKeysToFileSystem(new System.IO.DirectoryInfo("SOME WHERE IN STORAGE"))
                //.ProtectKeysWithCertificate(new X509Certificate2());
                .SetDefaultKeyLifetime(TimeSpan.FromDays(90));

A complete guide is here. It is all about DataProtection

More Related Contents:

  1. Custom Authentication in ASP.Net-Core
  2. ASP.NET Core 2.0 disable automatic challenge
  3. Simple token based authentication/authorization in asp.net core for Mongodb datastore
  4. How to register multiple implementations of the same interface in Asp.Net Core?
  5. Select Tag Helper in ASP.NET Core MVC
  6. Token based authentication in Web API without any user interface
  7. Token Based Authentication in ASP.NET Core
  8. ASP.NET Core 2.0 authentication middleware
  9. Change route collection of MVC6 after startup
  10. How to return a specific status code and no contents from Controller?
  11. How to validate domain credentials?
  12. Store complex object in TempData
  13. .NET Core Identity Server 4 Authentication VS Identity Authentication
  14. View POST request body in Application Insights
  15. Creating a proxy to another web api with Asp.net core
  16. Using WebClient or WebRequest to login to a website and access data
  17. Where are the ControllerContext and ViewEngines properties in MVC 6 Controller?
  18. Return “raw” json in ASP.NET Core 2.0 Web Api
  19. Windows authentication in asp.net 5
  20. Run a background task from a controller action in ASP.NET Core
  21. How to programmatically log in to a website to screenscape?
  22. ASP.NET Core disable authentication in development environment
  23. Where is Request.IsAjaxRequest() in Asp.Net Core MVC?
  24. ToArrayAsync() throws “The source IQueryable doesn’t implement IAsyncEnumerable”
  25. Authentication with old password no longer supported, use 4.1 style passwords
  26. Restrict route to controller namespace in ASP.NET Core
  27. The HTTP request is unauthorized with client authentication scheme ‘Ntlm’ The authentication header received from the server was ‘NTLM’
  28. Intercept bad requests before reaching controller in ASP.NET Core
  29. How to give custom implementation of UpdateAsync method of asp.net identity?
  30. Dealing with large file uploads on ASP.NET Core 1.0

Leave a Comment