HttpContext.SignInAsync( CookieAuthenticationDefaults.AuthenticationScheme, userPrincipal, new AuthenticationProperties { //ExpiresUtc = DateTime.UtcNow.AddMinutes(20), ExpiresUtc = DateTime.UtcNow.AddMinutes(1), IsPersistent = true,//在浏览器持久化,false的时候走session持久化 AllowRefresh = true//动态刷新令牌 });