stackoom
  简体   繁体   中英

Asp.Net Core Api Authorization

 原文  2020-06-06 08:40:56       reactjs/ asp.net-core/ authentication

Question

I have an Asp.Net Core / ReactJs aopplication. I'm using Microsoft.AspNetCore.ApiAuthorization.IdentityServer to authenticate the API. However, I'm getting an error, which I believe is down to bad configuration.

If I run this locally, with the following config, everything works, and the app redirects to the log-in screen as expected:

  "IdentityServer": {
    "Clients": {
      "MyApp": {
        "Profile": "IdentityServerSPA",        
      }
    },
    "Key": {
      "Type": "File",
      "FilePath": "Assets/selfsignedcert.pfx",
      "Password": "password"
    }
  },

However, if I change the config to the following:

  "IdentityServer": {
    "Clients": {
      "MyApp": {
        "Profile": "IdentityServerSPA",        
        "RedirectUri": "https://localhost:5211/authentication/login-callback"
        "LogoutUri": "https://localhost:5211/authentication/logout-callback"        
      }
    },
    "Key": {
      "Type": "File",
      "FilePath": "Assets/selfsignedcert.pfx",
      "Password": "password"
    }
  },

It errors (redirecting to the following):

https://localhost:5211/home/error?errorId=1234...

Looking at the auth request, from the client, they are exactly the same; however the second returns an error, while the first successfully redirects.

Is there something wrong with my config? Alternatively, how can I debug this issue?

2 answers

solution1
 0  2020-06-11 12:10:13

Both of your Uris in the non-working configuration point to logout. Is this really what you're trying to do?

In the first configuration, you're not defining any Uris, so they will have the following default values:

The redirect_uri defaults to /authentication/login-callback. The post_logout_redirect_uri defaults to /authentication/logout-callback.

As documented here

Try changing the second configuration to match the default values to see if that helps.

solution2
 0  2020-06-15 12:38:43

The client configuration of redirect_uri and post_logout_redirect_uri must be identical to the IDP: 

redirect_uri: 'https://localhost:5211/authentication/login-callback',
post_logout_redirect_uri: 'https://localhost:5211/authentication/logout-callback',

Or

redirect_uri: $'{IDPhost_config}/authentication/login-callback',
post_logout_redirect_uri: $'{IDPhost_config}/authentication/logout-callback',

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question Role Authorization Not Working with React/ASP.NET Core API ASP.NET Core with React.js API authorization How to deploy ASP.NET Core / React app with authorization to IIS? ASP.NET Core API and React JS ASP.NET Core - API multiple parameters Authorization and authentication in web application with ASP.NET Core backend and React frontend? Why does adding Okta Authentication/Authorization to ASP.Net Core WebAPI with React frontend throw a 500 error? asp.net core web api null data issue Sending files through Axios to Asp.net Core Api? Azure authentication for ASP.net core API and React client
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM