I am planning on deploying an MVC 6 application to Azure and it will be running on 2 or more instances. Once a client app has authenticated with one of the instances using cookies or oAuth, how can I ensure that the client app will be able to make authenticated requests on the other instances without having to re-authenticate? In previous versions of ASP.NET this was done by explicitly setting the machinekey in the web.config. The closest thing that I can find that can be a substitute for that is DataProtectionOptions.ApplicationDiscriminator. Am I looking in the right place? Any ideas?
↧