stackoom
  简体   繁体   中英

AWS Cognito Signin returning Bad gateway error

 原文  2022-02-23 15:57:41       .net-core/ amazon-elastic-beanstalk/ amazon-cognito/ aws-application-load-balancer

Question

My.Net Core application is published to an elastic beanstalk load balanced environment and I'm using the Cognito hosted UI for authentication but after entering correct login details I get a 502 error.

snippet from startup.cs

        services.AddAuthentication(options =>
        {
            options.DefaultAuthenticateScheme = CookieAuthenticationDefaults.AuthenticationScheme;
            options.DefaultSignInScheme = CookieAuthenticationDefaults.AuthenticationScheme;
            options.DefaultSignOutScheme = CookieAuthenticationDefaults.AuthenticationScheme;
            options.DefaultChallengeScheme = OpenIdConnectDefaults.AuthenticationScheme;                
        })
        .AddCookie()
        .AddOpenIdConnect(options =>
        {
            options.ResponseType = Configuration["Authentication:Cognito:ResponseType"];
            options.MetadataAddress = Configuration["Authentication:Cognito:MetadataAddress"];
            options.ClientId = Configuration["Authentication:Cognito:ClientId"];
            options.SaveTokens = true;
            options.ClientSecret = Configuration["Authentication:Cognito:Secret"];
            options.Scope.Add(Configuration["Authentication:Cognito:Scope"]);
            options.Events = new OpenIdConnectEvents()
            {
                OnRedirectToIdentityProviderForSignOut = OnRedirectToIdentityProviderForSignOut,
                OnRedirectToIdentityProvider = (async context =>
                {
                    context.ProtocolMessage.RedirectUri = context.ProtocolMessage.RedirectUri.Replace("http:", "https:");
                    await Task.FromResult(0);
                })
            };
        });

When I inspect the.network activity in the browser I'm seeing this... 在此处输入图像描述 ...which suggests that cognito is redirecting to /signin-oidc but there's no authorisation so it redirects back to cognito which then redirects back, and this repeats until it eventually throws the 502 error.

When I'm testing locally I'm able to login okay which makes me think it's maybe some kind of loadbalancing issue??

1 answers

solution1
 0  2022-11-23 16:48:17

I kept getting a Bad Gateway 502 until I discovered that my next.config.js had async rewrites enabled for the source/destination URLs in my clumsy attempt to fix a CORS issue. Removing that fixed my problem to get next-auth working with cognito. Then I had to fix the underlying CORS problem with server side policy settings.

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question AWS Cognito: Getting error in Auth.signIn (Validate that amazon-cognito-identity-js has been linked) AWS Grafana connecting to AWS Opensearch `OpenSearch error: Bad Gateway` using api gateway with aws cognito for protected routes AWS Cognito + API Gateway + Calling Cognito Token Endpoint 502 Bad Gateway in elasticbeanstalk of AWS AWS Cognito Signin with NextJS and Amplify - call endpoint on front or backend? AWS Cognito with external IDP (SAML) for Post-Signup/Signin Actions AWS Api Gateway and Cognito cause CORS errors AWS API Gateway + Cognito + Lambda - $context.authorizer.principalId empty Api Gateway Cognito Authorizer: client token works on AWS ui but not on Postman
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM