Activities of "rcalv002"

This ticket has been open over 2 weeks, we would appreciate some feedback

Hello. Your feedback please

Hello, your feedback please.

Hello, Negative, the issue is at the moment of generating migration it includes in the up code a table that was already in previous migration up code. The issue is not at the moment of applying migration as far as I can see.

Thanks for your response, any chance you could indicate where to add this code?

Here's the call to wellknown

No, azure only lets you configure redirect that are https:// in application we set env variable App:SelfUrl to https://

but it seems well-known endpoint might still be returning the http value and so microsoft says invalid redirect.

the system has been running for a long time behind proxy well, we are just now adding microsoft login.

Is the scenario clear now?

I have removed the dynamic section and can see it present. Attempting to login with the microsoft acc in the production deployment generates an invalid uri error, because the auth server returns http instead of https which is not allow. We had something similar in the past with identity server and implemented a workaround for it, here https://abp.io/support/questions/3706/Identity-server-production-deployment-with-angular. However this didnt work on iddict, We attempted to fix this with the following but it doesnt work: the value for app:selfurl is the https address in the docker container, the service is still behind nginx proxy so those configs have not changed.

public override void PreConfigureServices(ServiceConfigurationContext context)
{
    var hostingEnvironment = context.Services.GetHostingEnvironment();
    var configuration = context.Services.GetConfiguration();

    ...

    PreConfigure<OpenIddictBuilder>(builder =>
    {
        builder.AddValidation(options =>
        {
            options.AddAudiences("CloudTools");
            options.UseLocalServer();
            options.UseAspNetCore();
            options.SetIssuer(configuration["App:SelfUrl"]);
        });
    });

   ...
}

Sign in Sorry, but we’re having trouble signing you in.

AADSTS50011: The redirect URI 'http://mydomain.com/signin-microsoft' specified in the request does not match the redirect URIs configured for the application 'myappid'. Make sure the redirect URI sent in the request matches one added to your application in the Azure portal. Navigate to https://aka.ms/redirectUriMismatchError to learn more about how to fix this.

If we login with regular auth, and then go to settings -> external providers we can then enable a checkbox for microsoft and type in the id and secret again at which point it works. but it seems this should be automatic because its configured in code?

• ABP Framework version: v8.1.0
• UI Type: Blazor Server
• Database System: EF Core
• Tiered (for MVC) or Auth Server Separated (for Angular): no
• Exception message and full stack trace:
• Steps to reproduce the issue:

Attempted to implement social login on our app. as per docs below but the login button doesn't appear when we go to the login page. What's missing?

context.Services.AddAuthentication()
    .AddMicrosoftAccount(MicrosoftAccountDefaults.AuthenticationScheme, options =>
    {
        options.AuthorizationEndpoint = "https://login.microsoftonline.com/guid/oauth2/v2.0/authorize";
        options.TokenEndpoint = "https://login.microsoftonline.com/guid/oauth2/v2.0/token";

        options.ClaimActions.MapCustomJson("picture", _ => "https://graph.microsoft.com/v1.0/me/photo/$value");
        options.SaveTokens = true;

        options.ClientId = configuration["Authentication:Microsoft:ClientId"];
        options.ClientSecret = configuration["Authentication:Microsoft:ClientSecret"];
    })
    .WithDynamicOptions<MicrosoftAccountOptions, MicrosoftAccountHandler>(
        MicrosoftAccountDefaults.AuthenticationScheme,
        options =>
        {
            options.WithProperty(x => x.ClientId);
            options.WithProperty(x => x.ClientSecret, isSecret: true);
        }
    );