Looks like even though the return url is being passed in it then checks against options to allowed urls.
As this isn't a local url and is unique to each tenant I have made a new local url that redirects after the fact.
public class AccountController(ILegacyTenantAppService legacyTenantAppService)
: AbpAccountImpersonationChallengeAccountController
{
public override async Task<ActionResult> LogoutAsync(string returnUrl = "", string returnUrlHash = "")
{
var tenant = await legacyTenantAppService.GetLegacyIdAsync();
if (returnUrl.IsNullOrEmpty() &&tenant.LegacyId > 0)
{
returnUrl = $"https://domain.com/login/{tenant.LegacyId}?logout=1";
}
return await base.LogoutAsync(returnUrl, returnUrlHash);
}
}
Applied the change and fixed the if statement and still get the invalid_grant error.
Instead of us redirecting the user from the auth-server to tenant.auth-server then to the app. Is there a way for the app to persist the __tenant query string when the user gets redirected to /connect/authorize then to the /account/login?
HI,
Valid issuers is not the problem I am facing.
The issuer would have been the tenant version of the login page where as the app is using the authority.
How do I get an access token to share with you?
Hi,
Just sent an email with the logs and module classes.
Thanks
