Activities of "maliming"

hi @MarekH

Deos tenant1.mydomain.com and authserver.mydomain.com both use mydomain.com as domain?

hi selinkoykiran

Can you share a simple project to me? liming.ma@volosoft.com

hi

The framework will get connection string from AbpDbConnectionOptions by default.

So you can custom the DefaultConnectionStringResolver or MultiTenantConnectionStringResolver service.

https://github.com/abpframework/abp/blob/dev/framework/src/Volo.Abp.Data/Volo/Abp/Data/DefaultConnectionStringResolver.cs#L29 https://github.com/abpframework/abp/blob/dev/framework/src/Volo.Abp.MultiTenancy/Volo/Abp/MultiTenancy/MultiTenantConnectionStringResolver.cs#L12

Solved

hi

I want to check it remotely.

https://zoom.us/j/99623357334?pwd=YXFPK3A2QWQxUDJTK1ZONXg5cXBRZz09

It's located at Logs/logs.txt by default.

hi

Please share the error logs of invalid_client.

[10:24:04 DBG] Secret validators could not validate secret
[10:24:04 INF] {"ClientId": "QAX_App", "Category": "Authentication", "Name": "Client Authentication Failure", "EventType": "Failure", "Id": 1011, "Message": "Invalid client secret", "ActivityId": "0HM7F6ITJS7FV:00000006", "TimeStamp": "2021-03-25T02:24:04.0000000Z", "ProcessId": 16676, "LocalIpAddress":
"::1:44328", "RemoteIpAddress": "::1", "$type": "ClientAuthenticationFailureEvent"}
[10:24:04 ERR] Client secret validation failed for client: QAX_App.
[10:24:04 INF] Request finished HTTP/1.1 POST https://localhost:44328/connect/token application/x-www-form-urlencoded 71 - 400 - application/json;+charset=UTF-8 43.6361ms

After add Client_Secret:

[10:26:16 INF] Request starting HTTP/1.1 POST https://localhost:44328/connect/token application/x-www-form-urlencoded 95
[10:26:16 DBG] Request path /connect/token matched to endpoint type Token
[10:26:16 DBG] Endpoint enabled: Token, successfully created handler: IdentityServer4.Endpoints.TokenEndpoint
[10:26:16 INF] Invoking IdentityServer endpoint: IdentityServer4.Endpoints.TokenEndpoint for /connect/token
[10:26:16 DBG] Start token request.
[10:26:16 DBG] Start client validation
[10:26:16 DBG] Start parsing Basic Authentication secret
[10:26:16 DBG] Start parsing for secret in post body
[10:26:16 DBG] Parser found secret: PostBodySecretParser
[10:26:16 DBG] Secret id found: QAX_App
[10:26:16 DBG] client configuration validation for client QAX_App succeeded.
[10:26:16 DBG] Secret validator success: HashedSharedSecretValidator
[10:26:16 DBG] Client validation success
[10:26:16 INF] {"ClientId": "QAX_App", "AuthenticationMethod": "SharedSecret", "Category": "Authentication", "Name": "Client Authentication Success", "EventType": "Success", "Id": 1010, "Message": null, "ActivityId": "0HM7F6ITJS7FV:00000008", "TimeStamp": "2021-03-25T02:26:16.0000000Z", "ProcessId": 1667
6, "LocalIpAddress": "::1:44328", "RemoteIpAddress": "::1", "$type": "ClientAuthenticationSuccessEvent"}
[10:26:16 DBG] Start token request validation
[10:26:16 DBG] Start resource owner password token request validation
[10:26:16 WRN] Ldap login feature is not enabled!
[10:26:16 INF] Credentials validated for username: admin
[10:26:16 INF] {"Username": "admin", "Provider": null, "ProviderUserId": null, "SubjectId": "8a0ff9af-ed31-29e9-fc65-39fb795c9baa", "DisplayName": null, "Endpoint": "Token", "ClientId": "QAX_App", "Category": "Authentication", "Name": "User Login Success", "EventType": "Success", "Id": 1000, "Message": n
ull, "ActivityId": "0HM7F6ITJS7FV:00000008", "TimeStamp": "2021-03-25T02:26:16.0000000Z", "ProcessId": 16676, "LocalIpAddress": "::1:44328", "RemoteIpAddress": "::1", "$type": "UserLoginSuccessEvent"}
[10:26:16 DBG] Resource owner password token request validation success.
[10:26:16 INF] Token request validation success, {"ClientId": "QAX_App", "ClientName": "QAX_App", "GrantType": "password", "Scopes": "address email offline_access openid phone profile QAX role", "AuthorizationCode": "********", "RefreshToken": "********", "UserName": "admin", "AuthenticationContextRefere
nceClasses": null, "Tenant": null, "IdP": null, "Raw": {"Client_Id": "QAX_App", "UserName": "admin", "Password": "***REDACTED***", "grant_type": "password", "Client_Secret": "***REDACTED***"}, "$type": "TokenRequestValidationLog"}
[10:26:16 DBG] Getting claims for access token for client: QAX_App
[10:26:16 DBG] Getting claims for access token for subject: 8a0ff9af-ed31-29e9-fc65-39fb795c9baa
[10:26:16 DBG] Creating refresh token
[10:26:16 DBG] Setting an absolute lifetime: 31536000
[10:26:16 INF] {"ClientId": "QAX_App", "ClientName": "QAX_App", "RedirectUri": null, "Endpoint": "Token", "SubjectId": "8a0ff9af-ed31-29e9-fc65-39fb795c9baa", "Scopes": "address email offline_access openid phone profile QAX role", "GrantType": "password", "Tokens": [{"TokenType": "refresh_token", "TokenV
alue": "****B62F", "$type": "Token"}, {"TokenType": "access_token", "TokenValue": "****497A", "$type": "Token"}], "Category": "Token", "Name": "Token Issued Success", "EventType": "Success", "Id": 2000, "Message": null, "ActivityId": "0HM7F6ITJS7FV:00000008", "TimeStamp": "2021-03-25T02:26:16.0000000Z",
"ProcessId": 16676, "LocalIpAddress": "::1:44328", "RemoteIpAddress": "::1", "$type": "TokenIssuedSuccessEvent"}
[10:26:16 DBG] Token request success.
[10:26:16 INF] Request finished HTTP/1.1 POST https://localhost:44328/connect/token application/x-www-form-urlencoded 95 - 200 - application/json;+charset=UTF-8 220.1673ms

hi Naren

I will try to share the full steps and code.

Move to https://support.abp.io/QA/Questions/1088/How-to-get-Api-token-using-client-secret-key