I have developed Identity Server Admin which manages Client and Users and IdentityServer4 which manages Authenticating. both application developed in Asp.Net Core 3.1
Identity Sever Admin is multi tenant application as tenant name in host subdomain.
I have deployed in Azure App Service and used custom domain for both Identity Server Admin(MVC Client) and IdentityServer4
Identity Server Admin - https://tenant1.identityserveradmin.com , https://tenant2.identityserveradmin.com , https://allegion.identityserveradmin.com
IdentityServer4 - https://sts.identityserveradmin.com
in the above domains
tenant1 and tenant2 works perfectly as it get authenticate with Identity server4 and save the cookies but allegion domain doesn't save the cookie and goes into redirect loop
below is my cookie configuration in my startup.cs
services.AddAuthentication(options =>
{
options.DefaultScheme = CookieAuthenticationDefaults.AuthenticationScheme;
options.DefaultChallengeScheme = AuthenticationConsts.OidcAuthenticationScheme;
options.DefaultAuthenticateScheme = CookieAuthenticationDefaults.AuthenticationScheme;
options.DefaultForbidScheme = CookieAuthenticationDefaults.AuthenticationScheme;
options.DefaultSignInScheme = CookieAuthenticationDefaults.AuthenticationScheme;
options.DefaultSignOutScheme = CookieAuthenticationDefaults.AuthenticationScheme;
})
.AddCookie(CookieAuthenticationDefaults.AuthenticationScheme,
options =>
{
options.Cookie.Name = adminConfiguration.IdentityAdminCookieName;
options.Cookie.SameSite = SameSiteMode.None;
options.Cookie.HttpOnly = true;
options.Cookie.SecurePolicy = CookieSecurePolicy.Always;
options.Events = new CookieAuthenticationEvents
{
OnSignedIn = context => OnSignedIn(context, adminConfiguration, httpContextAccessor),
OnSigningIn = context => OnSigningIn(context, adminConfiguration, httpContextAccessor),
OnValidatePrincipal = context => OnValidatePrincipal(context, adminConfiguration, httpContextAccessor)
};
})
not sure why it's happening weird any help please.
Regards, Mahendran.
I fixed the issue myself the Client Secret was mismatching and cookies are not validated so this issue happened. now it got solved
The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.