Hi,
With this change, everything seems to work. Thanks for the support.
Stefano
Hi,
I sent you the files with WeTransfer.
I tried accessing the protected /Identity/Users page, which triggers a loop on the Okta login page.
Stefano
Hi,
no, no 502 error now. This is the log from login on wards:
2025-12-16 07:48:14.294 +00:00 [INF] Executing endpoint '/Account/Login'
2025-12-16 07:48:14.294 +00:00 [INF] Route matched with {page = "/Account/Login", area = "", action = "", controller = ""}. Executing page /Account/Login
2025-12-16 07:48:14.294 +00:00 [INF] Skipping the execution of current filter as its not the most effective filter implementing the policy Microsoft.AspNetCore.Mvc.ViewFeatures.IAntiforgeryPolicy
2025-12-16 07:48:14.304 +00:00 [INF] Executing handler method Volo.Abp.Account.Public.Web.Pages.Account.LoginModel.OnPostExternalLogin - ModelState is "Invalid"
2025-12-16 07:48:14.937 +00:00 [INF] Executed handler method OnPostExternalLogin, returned result Microsoft.AspNetCore.Mvc.ChallengeResult.
2025-12-16 07:48:14.939 +00:00 [INF] Executing ChallengeResult with authentication schemes (["Okta"]).
2025-12-16 07:48:15.380 +00:00 [INF] AuthenticationScheme: Okta was challenged.
2025-12-16 07:48:15.382 +00:00 [INF] Executed page /Account/Login in 1087.6731ms
2025-12-16 07:48:15.382 +00:00 [INF] Executed endpoint '/Account/Login'
2025-12-16 07:48:15.823 +00:00 [INF] Request finished HTTP/1.1 POST https://webap-fbteammanagement-we1-int.azurewebsites.net/Account/Login?handler=ExternalLogin - 302 null null 1543.6053ms
2025-12-16 07:48:28.052 +00:00 [INF] Request starting HTTP/1.1 POST https://webap-fbteammanagement-we1-int.azurewebsites.net/signin-azuread-oidc - application/x-www-form-urlencoded 573
2025-12-16 07:48:28.298 +00:00 [INF] AuthenticationScheme: Identity.External signed in.
2025-12-16 07:48:28.299 +00:00 [INF] Request finished HTTP/1.1 POST https://webap-fbteammanagement-we1-int.azurewebsites.net/signin-azuread-oidc - 302 null null 247.0339ms
2025-12-16 07:48:28.385 +00:00 [INF] Request starting HTTP/1.1 GET https://webap-fbteammanagement-we1-int.azurewebsites.net/Account/Login?handler=ExternalLoginCallback - null null
2025-12-16 07:48:28.388 +00:00 [INF] Executing endpoint '/Account/Login'
2025-12-16 07:48:28.388 +00:00 [INF] Route matched with {page = "/Account/Login", area = "", action = "", controller = ""}. Executing page /Account/Login
2025-12-16 07:48:28.388 +00:00 [INF] Skipping the execution of current filter as its not the most effective filter implementing the policy Microsoft.AspNetCore.Mvc.ViewFeatures.IAntiforgeryPolicy
2025-12-16 07:48:28.390 +00:00 [INF] Executing handler method Volo.Abp.Account.Public.Web.Pages.Account.LoginModel.OnGetExternalLoginCallbackAsync - ModelState is "Valid"
2025-12-16 07:48:29.253 +00:00 [INF] AuthenticationScheme: Identity.External signed out.
2025-12-16 07:48:29.881 +00:00 [INF] AuthenticationScheme: Identity.Application signed in.
2025-12-16 07:48:30.289 +00:00 [INF] Executed handler method OnGetExternalLoginCallbackAsync, returned result Microsoft.AspNetCore.Mvc.RedirectResult.
2025-12-16 07:48:30.339 +00:00 [INF] Executing RedirectResult, redirecting to /.
2025-12-16 07:48:30.340 +00:00 [INF] Executed page /Account/Login in 1951.7486ms
2025-12-16 07:48:30.340 +00:00 [INF] Executed endpoint '/Account/Login'
2025-12-16 07:48:30.345 +00:00 [INF] Request finished HTTP/1.1 GET https://webap-fbteammanagement-we1-int.azurewebsites.net/Account/Login?handler=ExternalLoginCallback - 302 null null 1960.6185ms
2025-12-16 07:48:30.443 +00:00 [INF] Request starting HTTP/1.1 GET https://webap-fbteammanagement-we1-int.azurewebsites.net/ - null null
2025-12-16 07:48:30.446 +00:00 [INF] Executing endpoint '/Index'
2025-12-16 07:48:30.446 +00:00 [INF] Route matched with {page = "/Index", area = "", action = "", controller = ""}. Executing page /Index
2025-12-16 07:48:30.446 +00:00 [INF] Skipping the execution of current filter as its not the most effective filter implementing the policy Microsoft.AspNetCore.Mvc.ViewFeatures.IAntiforgeryPolicy
2025-12-16 07:48:30.446 +00:00 [INF] Executing an implicit handler method - ModelState is "Valid"
2025-12-16 07:48:30.447 +00:00 [INF] Executed an implicit handler method, returned result Microsoft.AspNetCore.Mvc.RazorPages.PageResult.
2025-12-16 07:48:30.513 +00:00 [INF] Executed page /Index in 66.8962ms
2025-12-16 07:48:30.513 +00:00 [INF] Executed endpoint '/Index'
2025-12-16 07:48:30.516 +00:00 [INF] Request finished HTTP/1.1 GET https://webap-fbteammanagement-we1-int.azurewebsites.net/ - 200 null text/html; charset=utf-8 73.4385ms
2025-12-16 07:48:31.011 +00:00 [INF] Request starting HTTP/1.1 GET https://webap-fbteammanagement-we1-int.azurewebsites.net/Abp/ApplicationConfigurationScript - null null
2025-12-16 07:48:31.015 +00:00 [INF] Executing endpoint 'Volo.Abp.AspNetCore.Mvc.ApplicationConfigurations.AbpApplicationConfigurationScriptController.Get (Volo.Abp.AspNetCore.Mvc)'
2025-12-16 07:48:31.015 +00:00 [INF] Route matched with {area = "Abp", action = "Get", controller = "AbpApplicationConfigurationScript", page = ""}. Executing controller action with signature System.Threading.Tasks.Task`1[Microsoft.AspNetCore.Mvc.ActionResult] Get() on controller Volo.Abp.AspNetCore.Mvc.ApplicationConfigurations.AbpApplicationConfigurationScriptController (Volo.Abp.AspNetCore.Mvc).
2025-12-16 07:48:31.019 +00:00 [INF] Executing action method Volo.Abp.AspNetCore.Mvc.ApplicationConfigurations.AbpApplicationConfigurationScriptController.Get (Volo.Abp.AspNetCore.Mvc) - Validation state: "Valid"
2025-12-16 07:48:31.118 +00:00 [INF] Executed action method Volo.Abp.AspNetCore.Mvc.ApplicationConfigurations.AbpApplicationConfigurationScriptController.Get (Volo.Abp.AspNetCore.Mvc), returned result Microsoft.AspNetCore.Mvc.ContentResult in 98.7067ms.
2025-12-16 07:48:31.118 +00:00 [INF] Executing ContentResult with HTTP Response ContentType of application/javascript
2025-12-16 07:48:31.118 +00:00 [INF] Executed action Volo.Abp.AspNetCore.Mvc.ApplicationConfigurations.AbpApplicationConfigurationScriptController.Get (Volo.Abp.AspNetCore.Mvc) in 103.3587ms
2025-12-16 07:48:31.119 +00:00 [INF] Executed endpoint 'Volo.Abp.AspNetCore.Mvc.ApplicationConfigurations.AbpApplicationConfigurationScriptController.Get (Volo.Abp.AspNetCore.Mvc)'
2025-12-16 07:48:31.120 +00:00 [INF] Request finished HTTP/1.1 GET https://webap-fbteammanagement-we1-int.azurewebsites.net/Abp/ApplicationConfigurationScript - 200 4668 application/javascript 109.1082ms
2025-12-16 07:48:31.134 +00:00 [INF] Request starting HTTP/1.1 GET https://webap-fbteammanagement-we1-int.azurewebsites.net/Abp/ServiceProxyScript - null null
2025-12-16 07:48:31.137 +00:00 [INF] Executing endpoint 'Volo.Abp.AspNetCore.Mvc.ProxyScripting.AbpServiceProxyScriptController.GetAll (Volo.Abp.AspNetCore.Mvc)'
2025-12-16 07:48:31.137 +00:00 [INF] Route matched with {area = "Abp", action = "GetAll", controller = "AbpServiceProxyScript", page = ""}. Executing controller action with signature Microsoft.AspNetCore.Mvc.ActionResult GetAll(Volo.Abp.AspNetCore.Mvc.ProxyScripting.ServiceProxyGenerationModel) on controller Volo.Abp.AspNetCore.Mvc.ProxyScripting.AbpServiceProxyScriptController (Volo.Abp.AspNetCore.Mvc).
2025-12-16 07:48:31.139 +00:00 [INF] Executing action method Volo.Abp.AspNetCore.Mvc.ProxyScripting.AbpServiceProxyScriptController.GetAll (Volo.Abp.AspNetCore.Mvc) - Validation state: "Valid"
2025-12-16 07:48:31.149 +00:00 [INF] Executed action method Volo.Abp.AspNetCore.Mvc.ProxyScripting.AbpServiceProxyScriptController.GetAll (Volo.Abp.AspNetCore.Mvc), returned result Microsoft.AspNetCore.Mvc.ContentResult in 10.4597ms.
2025-12-16 07:48:31.149 +00:00 [INF] Executing ContentResult with HTTP Response ContentType of application/javascript
2025-12-16 07:48:31.150 +00:00 [INF] Executed action Volo.Abp.AspNetCore.Mvc.ProxyScripting.AbpServiceProxyScriptController.GetAll (Volo.Abp.AspNetCore.Mvc) in 12.5865ms
2025-12-16 07:48:31.150 +00:00 [INF] Executed endpoint 'Volo.Abp.AspNetCore.Mvc.ProxyScripting.AbpServiceProxyScriptController.GetAll (Volo.Abp.AspNetCore.Mvc)'
2025-12-16 07:48:31.151 +00:00 [INF] Request starting HTTP/1.1 GET https://webap-fbteammanagement-we1-int.azurewebsites.net/Abp/ApplicationLocalizationScript?cultureName=it - null null
2025-12-16 07:48:31.153 +00:00 [INF] Executing endpoint 'Volo.Abp.AspNetCore.Mvc.Localization.AbpApplicationLocalizationScriptController.GetAsync (Volo.Abp.AspNetCore.Mvc)'
2025-12-16 07:48:31.153 +00:00 [INF] Route matched with {area = "Abp", action = "Get", controller = "AbpApplicationLocalizationScript", page = ""}. Executing controller action with signature System.Threading.Tasks.Task`1[Microsoft.AspNetCore.Mvc.ActionResult] GetAsync(Volo.Abp.AspNetCore.Mvc.ApplicationConfigurations.ApplicationLocalizationRequestDto) on controller Volo.Abp.AspNetCore.Mvc.Localization.AbpApplicationLocalizationScriptController (Volo.Abp.AspNetCore.Mvc).
2025-12-16 07:48:31.155 +00:00 [INF] Executing action method Volo.Abp.AspNetCore.Mvc.Localization.AbpApplicationLocalizationScriptController.GetAsync (Volo.Abp.AspNetCore.Mvc) - Validation state: "Valid"
2025-12-16 07:48:31.166 +00:00 [INF] Executed action method Volo.Abp.AspNetCore.Mvc.Localization.AbpApplicationLocalizationScriptController.GetAsync (Volo.Abp.AspNetCore.Mvc), returned result Microsoft.AspNetCore.Mvc.ContentResult in 11.1844ms.
2025-12-16 07:48:31.166 +00:00 [INF] Executing ContentResult with HTTP Response ContentType of application/javascript
2025-12-16 07:48:31.167 +00:00 [INF] Executed action Volo.Abp.AspNetCore.Mvc.Localization.AbpApplicationLocalizationScriptController.GetAsync (Volo.Abp.AspNetCore.Mvc) in 13.4191ms
2025-12-16 07:48:31.167 +00:00 [INF] Executed endpoint 'Volo.Abp.AspNetCore.Mvc.Localization.AbpApplicationLocalizationScriptController.GetAsync (Volo.Abp.AspNetCore.Mvc)'
2025-12-16 07:48:31.177 +00:00 [INF] Request finished HTTP/1.1 GET https://webap-fbteammanagement-we1-int.azurewebsites.net/Abp/ServiceProxyScript - 200 48073 application/javascript 43.2564ms
2025-12-16 07:48:31.178 +00:00 [INF] Request finished HTTP/1.1 GET https://webap-fbteammanagement-we1-int.azurewebsites.net/Abp/ApplicationLocalizationScript?cultureName=it - 200 125379 application/javascript 26.1949ms
Hi,
I checked all the settings and developed a test program to isolate the issue, which isn't an Azure environment problem. The following code is written with pure ASP.NET Core 9 and works perfectly (it uses Okta authentication):
using Microsoft.AspNetCore.Authentication;
using Microsoft.AspNetCore.Authentication.Cookies;
using Microsoft.AspNetCore.Authentication.OpenIdConnect;
using Microsoft.IdentityModel.Protocols.OpenIdConnect;
var builder = WebApplication.CreateBuilder(args);
builder.Services.AddControllersWithViews();
builder.Services.AddAuthentication(options =>
{
options.DefaultScheme = CookieAuthenticationDefaults.AuthenticationScheme;
options.DefaultChallengeScheme = "Okta";
})
.AddCookie(CookieAuthenticationDefaults.AuthenticationScheme)
.AddOpenIdConnect("Okta", options =>
{
options.Authority = "https://myauthentication.okta.com/oauth2/default";
options.ClientId = "MyClientId";
options.ClientSecret = "MyClientSecret";
options.CallbackPath = "/signin-azuread-oidc";
options.ResponseType = OpenIdConnectResponseType.Code;
options.MapInboundClaims = false;
options.Scope.Add("email");
options.Events = new OpenIdConnectEvents
{
OnRedirectToIdentityProvider = redirectContext =>
{
redirectContext.ProtocolMessage.RedirectUri = "https://int-fbteammgmt.lpl-cloud.com/signin-azuread-oidc";
return Task.CompletedTask;
}
};
options.AdditionalAuthorizationParameters["prompt"] = "login";
});
var app = builder.Build();
if (!app.Environment.IsDevelopment())
{
app.UseExceptionHandler("/Home/Error");
app.UseHsts();
}
app.UseStaticFiles();
app.UseRouting();
app.UseAuthentication();
app.UseAuthorization();
app.MapGet("/login", async (HttpContext ctx) =>
{
await ctx.ChallengeAsync("Okta", new AuthenticationProperties
{
RedirectUri = "/Home/Secure"
});
});
app.MapGet("/logout", async (HttpContext ctx) =>
{
await ctx.SignOutAsync(CookieAuthenticationDefaults.AuthenticationScheme);
ctx.Response.Redirect("/");
});
app.MapControllerRoute(
name: "default",
pattern: "{controller=Home}/{action=Index}/{id?}");
app.Run();
This is my page after logging in:
However, if I insert this code into the ConfigureExternalProviders method of a standard abp template created by abp studio:
private void ConfigureExternalProviders(ServiceConfigurationContext context)
{
context.Services.AddAuthentication(options =>
{
options.DefaultScheme = CookieAuthenticationDefaults.AuthenticationScheme;
options.DefaultChallengeScheme = "Okta";
options.DefaultSignOutScheme = "Okta";
})
.AddCookie(CookieAuthenticationDefaults.AuthenticationScheme)
.AddOpenIdConnect("Okta", options =>
{
options.Authority = "https://myauthentication.okta.com/oauth2/default";
options.ClientId = "MyClientId";
options.ClientSecret = "MyClientSecret";
options.CallbackPath = "/signin-azuread-oidc";
options.ResponseType = OpenIdConnectResponseType.Code;
options.MapInboundClaims = false;
options.Scope.Add("email");
options.Events = new OpenIdConnectEvents
{
OnRedirectToIdentityProvider = redirectContext =>
{
redirectContext.ProtocolMessage.RedirectUri = "https://int-fbteammgmt.lpl-cloud.com/signin-azuread-oidc";
return Task.CompletedTask;
}
};
});
}
The result I get is that the login is successful, the application returns to the home page but the protected pages are not displayed, as if the user was not authenticated by abp:
Please note that to ensure you are working in an identical environment, both applications are published to the same Azure Application. Please urgently provide me with the information needed to properly configure abp.
Stefano
Hi,
Can you tell me why you said the error comes from Azure and not from the application?
Hi,
I wrote the necessary information into the log:
2025-12-05 14:39:35.143 +00:00 [INF] Executing handler method Volo.Abp.Account.Public.Web.Pages.Account.LoginModel.OnPostExternalLogin - ModelState is "Invalid"
2025-12-05 14:39:35.152 +00:00 [DBG] Found the endpoints ["/Account/Login","Route: {area}/{controller=Home}/{action=Index}/{id?}","Route: {controller=Home}/{action=Index}/{id?}"] for address (ReturnUrl=[],ReturnUrlHash=[],LinkTenantId=[],LinkUserId=[],LinkToken=[],page=[/Account/Login],handler=[ExternalLoginCallback])
2025-12-05 14:39:35.152 +00:00 [DBG] Successfully processed template Account/Login for /Account/Login resulting in /Account/Login and ?handler=ExternalLoginCallback
2025-12-05 14:39:35.152 +00:00 [DBG] Link generation succeeded for endpoints ["/Account/Login","Route: {area}/{controller=Home}/{action=Index}/{id?}","Route: {controller=Home}/{action=Index}/{id?}"] with result /Account/Login?handler=ExternalLoginCallback
2025-12-05 14:39:35.693 +00:00 [INF] Executed handler method OnPostExternalLogin, returned result Microsoft.AspNetCore.Mvc.ChallengeResult.
2025-12-05 14:39:35.694 +00:00 [INF] Executing ChallengeResult with authentication schemes (["AzureOpenId"]).
2025-12-05 14:39:35.836 +00:00 [INF] options.Authority = https://login.microsoftonline.com/e6cbec2f-2f23-43ca-82c4-51a7c9b71e7a/v2.0/
2025-12-05 14:39:35.836 +00:00 [INF] options.ClientId = [ClientId]
2025-12-05 14:39:35.836 +00:00 [INF] options.ResponseType = code id_token
2025-12-05 14:39:35.836 +00:00 [INF] options.CallbackPath = /signin-azuread-oidc
2025-12-05 14:39:35.836 +00:00 [INF] options.ClientSecret = [ClientSecret]
2025-12-05 14:39:35.836 +00:00 [INF] options.RequireHttpsMetadata = False
2025-12-05 14:39:35.836 +00:00 [INF] options.SaveTokens = True
2025-12-05 14:39:35.836 +00:00 [INF] options.GetClaimsFromUserInfoEndpoint = True
2025-12-05 14:39:35.836 +00:00 [INF] options.SignInScheme = Identity.External
2025-12-05 14:39:35.836 +00:00 [INF] options.Scope = System.Collections.Generic.HashSet`1[System.String]
2025-12-05 14:39:35.836 +00:00 [INF] redirectContext.ProtocolMessage.RedirectUri = https://int-fbteammgmt.lpl-cloud.com/signin-azuread-oidc
2025-12-05 14:39:35.841 +00:00 [DBG] HandleChallenge with Location: https://login.microsoftonline.com/e6cbec2f-2f23-43ca-82c4-51a7c9b71e7a/oauth2/v2.0/authorize?client_id=[ClientId]&redirect_uri=https%3A%2F%2Fint-fbteammgmt.lpl-cloud.com%2Fsignin-azuread-oidc&response_type=code%20id_token&scope=openid%20profile%20email&response_mode=form_post&nonce=639005423758346612.NjVhNzRjN2QtYzJiNi00NjYxLWJhZDEtMDk4ZGJhNGFmODFhMDlkMjQ4NGYtMmEyYi00Y2EyLWEyNWQtNGZlZTY1NzJkMTJj&prompt=login&state=CfDJ8El3M3pstwtKhrAwEmsdITJ2hO_xXDXzndRZ7p_NJGeMIIyeQsRdTwxP8TvRrngJhu6jAKEibxsw209S-H7Uu3AxzLQ5HVha-vYZHjkU8oyjteUcRHxmiVkfViKf_7mvEBDK_QJr_ZHhRd09iu3jgxUU-kgKAqj1VOEGOlrWLS_4NKvJ9myKcWk52fRXtOtB8BJaKYEwczE171Btm_ryojm6LwbTgaflDTchQAHqgqGOTjQpfgH-44XjpVMMmlmeFZNzHZcQmhLElzaFzaEotZkT6vbgrJR-mRhWXZBWqclgIs5diIUddbPq2TWu93-tDhKca1QNKJZOoMYmG_xxA7jb2oUv39DqLjKQNYp-gQo8yp5Z7s5AUVglgQ5Zij9K0PhScRmQutGXitYczH_Vo2FhjZdjkO12vLRqAw9q6S6DFIRT2jGBrMl3qPgkE5EMBQ&x-client-SKU=ID_NET9_0&x-client-ver=8.12.0.0; and Set-Cookie: .AspNetCore.OpenIdConnect.Nonce.CfDJ8El3M3pstwtKhrAwEmsdITKh_UOvt-omAQMUT2lolNe2L9kkt8Jqyj7WZff4mjCFvI6HKJkiHEUuB71HS1mxJFVuFQZrVT2L0MIaVs8blgcWZhh_A981Nr89h8AvuU4yIb4kPXnJpA15WTOLcR0EykO1L7t4LDtkNJuX8EBWvallV_JLpPjki58o5CrkOkbv5A6bPCAhK-6cCatgiO35eaqgIu6jjgfkUUe0WBmtW0TjDwXQRge7wMltLa0h7wsBHDedMpuyI791j82x3tyR5Gc=N; expires=Fri, 05 Dec 2025 14:54:35 GMT; path=/signin-azuread-oidc; secure; samesite=none; httponly,.AspNetCore.Correlation.RMNE9LR4iV937DetUXmVlde_E-IoxV150Q1rSG6bjTI=N; expires=Fri, 05 Dec 2025 14:54:35 GMT; path=/signin-azuread-oidc; secure; samesite=none; httponly.
2025-12-05 14:39:35.842 +00:00 [INF] AuthenticationScheme: AzureOpenId was challenged.
2025-12-05 14:39:35.843 +00:00 [INF] Executed page /Account/Login in 710.6797ms
2025-12-05 14:39:35.843 +00:00 [INF] Executed endpoint '/Account/Login'
2025-12-05 14:39:36.150 +00:00 [INF] Request finished HTTP/1.1 POST https://webap-fbteammanagement-we1-int.azurewebsites.net/Account/Login?handler=ExternalLogin - 302 null null 1037.3476ms
2025-12-05 14:40:11.930 +00:00 [INF] Request starting HTTP/1.1 POST https://webap-fbteammanagement-we1-int.azurewebsites.net/signin-azuread-oidc - application/x-www-form-urlencoded 3535
2025-12-05 14:40:11.930 +00:00 [DBG] Unknown proxy: 92.123.71.143:43318
2025-12-05 14:40:11.931 +00:00 [DBG] No candidates found for the request path '/signin-azuread-oidc'
2025-12-05 14:40:11.931 +00:00 [DBG] Request did not match any endpoints
2025-12-05 14:40:11.931 +00:00 [DBG] POST requests are not supported
2025-12-05 14:40:11.931 +00:00 [DBG] POST requests are not supported
2025-12-05 14:40:11.931 +00:00 [DBG] The event OpenIddict.Validation.OpenIddictValidationEvents+ProcessRequestContext was successfully processed by OpenIddict.Validation.AspNetCore.OpenIddictValidationAspNetCoreHandlers+ResolveRequestUri.
2025-12-05 14:40:11.932 +00:00 [DBG] The event OpenIddict.Server.OpenIddictServerEvents+ProcessRequestContext was successfully processed by OpenIddict.Server.AspNetCore.OpenIddictServerAspNetCoreHandlers+ResolveRequestUri.
2025-12-05 14:40:11.932 +00:00 [DBG] The event OpenIddict.Server.OpenIddictServerEvents+ProcessRequestContext was successfully processed by OpenIddict.Server.OpenIddictServerHandlers+InferEndpointType.
2025-12-05 14:40:11.932 +00:00 [DBG] The event OpenIddict.Server.OpenIddictServerEvents+ProcessRequestContext was successfully processed by Volo.Abp.Account.Web.Pages.Account.OpenIddictImpersonateInferEndpointType.
2025-12-05 14:40:11.932 +00:00 [DBG] The event OpenIddict.Server.OpenIddictServerEvents+ProcessRequestContext was successfully processed by OpenIddict.Server.AspNetCore.OpenIddictServerAspNetCoreHandlers+ValidateHostHeader.
2025-12-05 14:40:11.949 +00:00 [DBG] Updating configuration
2025-12-05 14:40:11.952 +00:00 [DBG] Received 'id_token'
2025-12-05 14:40:12.028 +00:00 [DBG] Redeeming code for tokens.
2025-12-05 14:40:12.250 +00:00 [INF] AuthenticationScheme: Identity.External signed in.
2025-12-05 14:40:12.251 +00:00 [INF] Request finished HTTP/1.1 POST https://webap-fbteammanagement-we1-int.azurewebsites.net/signin-azuread-oidc - 302 null null 321.7194ms
I'll also show you what Chrome says once you log in:
This is what happens in a production environment where I run the version developed with abp.io v. 4.3. Note that the code that performs the login and authentication is the same:
Please we should try to identify the problem quickly because the customer (as you can see, Chanel) is starting to put pressure on the issue.
Hi,
What tool are you using?
Hi,
Sorry, but where did you get that redirect_uri value from?
If you mean the value of this property:
In my Azure environment, it's configured as https://int-fbteammgmt.lpl-cloud.com/signin-azuread-oidc.
Regarding the PermissionRequirement issue, the user I'm trying to connect with and the redirect issue is an admin.
Stefano
Because https://int-fbteammgmt.lpl-cloud.com/ is the public endpoint.
There are also errors like this in the log:
PermissionRequirement: Calendar_Parameters
2025-12-04 08:26:08.481 +00:00 [INF] Authorization failed. These requirements were not met:
PermissionRequirement: Calendar_Parameters
2025-12-04 08:26:08.484 +00:00 [INF] Authorization failed. These requirements were not met:
PermissionRequirement: Planning_Parameters
2025-12-04 08:26:08.486 +00:00 [INF] Authorization failed. These requirements were not met:
PermissionRequirement: Trade_Parameters
2025-12-04 08:26:08.618 +00:00 [DBG] Executing view component Volo.Abp.AspNetCore.Mvc.UI.Theme.LeptonX.Themes.LeptonX.Components.SideMenu.MainMenu.MainMenuViewComponent with arguments ([]).
2025-12-04 08:26:08.631 +00:00 [INF] Authorization failed. These requirements were not met:
PermissionRequirement: Calendar_Parameters
2025-12-04 08:26:08.632 +00:00 [INF] Authorization failed. These requirements were not met:
PermissionRequirement: Calendar_Parameters
2025-12-04 08:26:08.634 +00:00 [INF] Authorization failed. These requirements were not met:
PermissionRequirement: Planning_Parameters
2025-12-04 08:26:08.635 +00:00 [INF] Authorization failed. These requirements were not met:
PermissionRequirement: Trade_Parameters
Can you tell me what this is?
I have the debug log file, but it's too big to put here. Can I email it to you? Can you give me an address?
