HOW TO AUTHENTICATE EXERNAL SSO TOKEN WITH ADMIN APIS #5427 | Support

shijo created one year ago

ABP Framework version: v7.3.0
UI type: Angular
DB provider: EF Core
Tiered (MVC) or Auth Server Separated (Angular): yes
Exception message and stack trace:
Steps to reproduce the issue:"
1. Client Application/Mobile app getting authorized and obtained token from External SSO Application
2. API call initiated with the tenant and generated token
How to configure extra authentication to validate this external token in abp api application ? Here is the sample flow diagram.

37 Answer(s)

0

shijo created one year ago

TestApp.HttpApi.Host

All APIs are in TestApp.HttpApi.Host, how to access API by external user? Strange thing is when I placed [Authorize(AuthenticationSchemes = "Bearer,jwt2")] in controller attribute api returning data and same thing when I placed in Service not working
0
shijo created one year ago
Hi, Nothing is working out.

See I want to switch users based on token claim data emailid, before calling the APIs, I think now that's user switching is not happening, and thats why API authorization is failing.

When I am calling API, lifecycle is somethings like this

https://localhost:44316/api/app/authors >>>

AuthorsAppService constructor

AuthorController constructor

Task<PagedResultDto<AuthorDto>> GetListAsync(GetAuthorsInput input) in AuthorController

TokenValidated(TokenValidatedContext context) in JWTToken validator

Inside here I am trying to switch user but not working

Response 401 UnAuthorized ** service (AuthorsAppService) layer method not calling at all
0

maliming created one year ago
Support Team Fullstack Developer

hi

I can check it remotely. My time zone is utc+8.
0

shijo created one year ago

hi

I can check it remotely. My time zone is utc+8.

I have teamviewer, can you access ?? Let me know your convenient time, I am available any time.
0

shijo created one year ago

Hi, Can you update me on this, the task is bit urgent
0

maliming created one year ago
Support Team Fullstack Developer

hi

I can check it remotely tomorrow.

UTC+8 9:00-12:00 13:00-18:00

You can email me liming.ma@volosoft.com
0

maliming created one year ago
Support Team Fullstack Developer

hi

You can keep testing it and give feedback here.
0

shijo created one year ago

hi

You can keep testing it and give feedback here.

Working fine, I mapped the role in admin to give permission to access the APIs.

One more question, Is that a good approach to check user availability from db on the token-validated event?

maliming created one year ago

Support Team Fullstack Developer

You can add your code to:

app.Use(async (ctx, next) =>
{
    if (ctx.User.Identity?.IsAuthenticated != true)
    {
        var result = await ctx.AuthenticateAsync("jwt2");
        if (result.Succeeded && result.Principal != null)
        {
            // add your logic
            ctx.User = result.Principal;
            // add your logic

        }
    }

    await next();
});

shijo created one year ago

You can add your code to:

app.Use(async (ctx, next) => 
{ 
    if (ctx.User.Identity?.IsAuthenticated != true) 
    { 
        var result = await ctx.AuthenticateAsync("jwt2"); 
        if (result.Succeeded && result.Principal != null) 
        { 
            // add your logic 
            ctx.User = result.Principal; 
            // add your logic 
 
        } 
    } 
 
    await next(); 
});

Production environment _currentTenant is null inside TokenValidated method, locally I am getting the value what could be the reason?

0

maliming created one year ago
Support Team Fullstack Developer

hi

Maybe the cookies are different in local and production.

https://docs.abp.io/en/abp/latest/Multi-Tenancy#default-tenant-resolvers
0

shijo created one year ago

Issue solved, Thanks for your support

1

Showing 26 to 50 of 37 entries.

Previous
1
2 (current)
Next

Have an answer to this question? Log in and write your answer.