Open Closed

Not able to Authenticate through Swagger of Custom Module API #1121


User avatar
1
viswajwalith created
  • ABP Framework version: v4.2.X
  • UI type: Angular
  • DB provider: EF Core / MongoDB
  • Tiered (MVC) or Identity Server Separated (Angular): yes
  • Exception message and stack trace:
  • Steps to reproduce the issue:

We have created the Microservice APplication Template and added the custom module manually to the microservices folder. We are not able to get authenticated when trying from Swagger API of the Custom Module we created, it says "Scope <<OURMODULENAME>> not found in store". . Am I missing anhything here. Also by when we can expect stabe/support version of CLI/Suite for MicroService Template?

We feeded the data into below tables manually:

-- Administration AbpPermissionGrants

--- Identity IdentityServerClients IdentityServerClientGrantTypes IdentityServerClientRedirectUris IdentityServerClientScopes
IdentityServerClientSecrets
IdentityServerApiResources
IdentityServerApiScopes IdentityServerApiResourceScopes

Error Log of AuthServer:

2021-04-01 09:36:20.082 +00:00 [INF] Request starting HTTP/2 GET https://localhost:44322/connect/authorize?response_type=code&client_id=EmployeeManagement_Swagger&redirect_uri=https%3A%2F%2Flocalhost%3A44353%2Fswagger%2Foauth2-redirect.html&scope=EmployeeManagement&state=VGh1IEFwciAwMSAyMDIxIDA5OjM2OjIwIEdNVCswMDAwIChHcmVlbndpY2ggTWVhbiBUaW1lKQ%3D%3D - -
2021-04-01 09:36:20.085 +00:00 [DBG] Request path /connect/authorize matched to endpoint type Authorize
2021-04-01 09:36:20.090 +00:00 [DBG] Endpoint enabled: Authorize, successfully created handler: IdentityServer4.Endpoints.AuthorizeEndpoint
2021-04-01 09:36:20.090 +00:00 [INF] Invoking IdentityServer endpoint: IdentityServer4.Endpoints.AuthorizeEndpoint for /connect/authorize
2021-04-01 09:36:20.090 +00:00 [DBG] Start authorize request
2021-04-01 09:36:20.090 +00:00 [DBG] No user present in authorize request
2021-04-01 09:36:20.090 +00:00 [DBG] Start authorize request protocol validation
2021-04-01 09:36:20.111 +00:00 [DBG] client configuration validation for client EmployeeManagement_Swagger succeeded.
2021-04-01 09:36:20.111 +00:00 [DBG] Checking for PKCE parameters
2021-04-01 09:36:20.111 +00:00 [DBG] No PKCE used.
2021-04-01 09:36:20.118 +00:00 [ERR] Scope EmployeeManagement not found in store.
2021-04-01 09:36:20.119 +00:00 [ERR] Request validation failed
2021-04-01 09:36:20.119 +00:00 [INF] {"ClientId":"EmployeeManagement_Swagger","ClientName":"EmployeeManagement_Swagger","RedirectUri":"https://localhost:44353/swagger/oauth2-redirect.html","AllowedRedirectUris":["https://localhost:44353/swagger/oauth2-redirect.html"],"SubjectId":"anonymous","ResponseType":"code","ResponseMode":"query","GrantType":"authorization_code","RequestedScopes":"EmployeeManagement","State":"VGh1IEFwciAwMSAyMDIxIDA5OjM2OjIwIEdNVCswMDAwIChHcmVlbndpY2ggTWVhbiBUaW1lKQ==","UiLocales":null,"Nonce":null,"AuthenticationContextReferenceClasses":null,"DisplayMode":null,"PromptMode":"","MaxAge":null,"LoginHint":null,"SessionId":null,"Raw":{"response_type":"code","client_id":"EmployeeManagement_Swagger","redirect_uri":"https://localhost:44353/swagger/oauth2-redirect.html","scope":"EmployeeManagement","state":"VGh1IEFwciAwMSAyMDIxIDA5OjM2OjIwIEdNVCswMDAwIChHcmVlbndpY2ggTWVhbiBUaW1lKQ=="},"$type":"AuthorizeRequestValidationLog"}
2021-04-01 09:36:20.119 +00:00 [INF] {"ClientId":"EmployeeManagement_Swagger","ClientName":"EmployeeManagement_Swagger","RedirectUri":"https://localhost:44353/swagger/oauth2-redirect.html","Endpoint":"Authorize","SubjectId":null,"Scopes":"EmployeeManagement","GrantType":"authorization_code","Error":"invalid_scope","ErrorDescription":"Invalid scope","Category":"Token","Name":"Token Issued Failure","EventType":"Failure","Id":2001,"Message":null,"ActivityId":"80000097-0003-fe00-b63f-84710c7967bb","TimeStamp":"2021-04-01T09:36:20.0000000Z","ProcessId":6140,"LocalIpAddress":"::1:44322","RemoteIpAddress":"::1","$type":"TokenIssuedFailureEvent"}
2021-04-01 09:36:20.122 +00:00 [INF] Request finished HTTP/2 GET https://localhost:44322/connect/authorize?response_type=code&client_id=EmployeeManagement_Swagger&redirect_uri=https%3A%2F%2Flocalhost%3A44353%2Fswagger%2Foauth2-redirect.html&scope=EmployeeManagement&state=VGh1IEFwciAwMSAyMDIxIDA5OjM2OjIwIEdNVCswMDAwIChHcmVlbndpY2ggTWVhbiBUaW1lKQ%3D%3D - - - 302 - - 39.8680ms
2021-04-01 09:36:20.125 +00:00 [INF] Request starting HTTP/2 GET https://localhost:44322/Account/Error?errorId=CfDJ8H3_8VQl9DVGvHcz5WCAiEQWAJKSQy0i9KFIrR00nkALGrm9bJ8tNvMA7yVSy0NKmGb0nYgX90iu2Zy4Ap7cRlQOFilDu9omDDXTOZDo1xJ3OOGUEieKG6ollU_-WjlEabOiigaRwQvTz6XqGZ6v3ruaqKg5bq8njmXgFHDhS00MJd2c3NqIUEYt7EtrPd_jLuOT0hfAaZmutWyO0EuSZ-iwQCKoR3mxBTfENx0jDfKqJ6OSW-Q504mhBH6G9zkpSOqc8g3wygtGcZEtyy7TBv46SrJ7oHbWbUZctzajvsPsI6rzueNx6EL99TdzclFuITzgF9QFuIu8P5u6LecTt9zB1jBbPOrXgWJa3fI0lIzY2ZpR6deiWSfiOOy1a4DlUMNOA8fZiD4ZuqoNogMhvnHbHw8DXoe4lXKoxcz_jR3gmyLZ4xsnbJv-bKilvt2UA8bCqAYMumvZjQaeJknFMYMP3aQ7rSiQtPDTxxaCItU73moYetv4A2xbgoDADoBOqJG-aBuUgC4o1r6GwK9BGrrcwKrRSmksD_5U5AcoW89afDYRKt7-_uerh8tpYVRHnkv14Op3diI9W20rHvoRicXFYXMlETVuChlNXqJb3i50tKyNX0auP3ObmPQMUF86LIw60MutmbZZdBOPOoMEpmE5mSgsYiNqZjsilgNUN19rZHylJwjWeq57ICtdbjQ7gQ - -
2021-04-01 09:36:20.128 +00:00 [INF] Executing endpoint 'Volo.Abp.Account.Web.Areas.Account.Controllers.ErrorController.Index (Volo.Abp.Account.Pro.Public.Web.IdentityServer)'
2021-04-01 09:36:20.129 +00:00 [INF] Route matched with {area = "account", action = "Index", controller = "Error", page = ""}. Executing controller action with signature System.Threading.Tasks.Task`1[Microsoft.AspNetCore.Mvc.IActionResult] Index(System.String) on controller Volo.Abp.Account.Web.Areas.Account.Controllers.ErrorController (Volo.Abp.Account.Pro.Public.Web.IdentityServer).
2021-04-01 09:36:20.131 +00:00 [INF] Executing ViewResult, running view ~/Views/Error/500.cshtml.
2021-04-01 09:36:20.170 +00:00 [DBG] Added bundle 'Lepton.Global' to the page in 7.48 ms.
2021-04-01 09:36:20.189 +00:00 [DBG] Added bundle 'Lepton.Global' to the page in 2.32 ms.
2021-04-01 09:36:20.190 +00:00 [INF] Executed ViewResult - view ~/Views/Error/500.cshtml executed in 58.9402ms.
2021-04-01 09:36:20.190 +00:00 [INF] Executed action Volo.Abp.Account.Web.Areas.Account.Controllers.ErrorController.Index (Volo.Abp.Account.Pro.Public.Web.IdentityServer) in 61.7587ms
2021-04-01 09:36:20.190 +00:00 [INF] Executed endpoint 'Volo.Abp.Account.Web.Areas.Account.Controllers.ErrorController.Index (Volo.Abp.Account.Pro.Public.Web.IdentityServer)'
2021-04-01 09:36:20.191 +00:00 [INF] Request finished HTTP/2 GET https://localhost:44322/Account/Error?errorId=CfDJ8H3_8VQl9DVGvHcz5WCAiEQWAJKSQy0i9KFIrR00nkALGrm9bJ8tNvMA7yVSy0NKmGb0nYgX90iu2Zy4Ap7cRlQOFilDu9omDDXTOZDo1xJ3OOGUEieKG6ollU_-WjlEabOiigaRwQvTz6XqGZ6v3ruaqKg5bq8njmXgFHDhS00MJd2c3NqIUEYt7EtrPd_jLuOT0hfAaZmutWyO0EuSZ-iwQCKoR3mxBTfENx0jDfKqJ6OSW-Q504mhBH6G9zkpSOqc8g3wygtGcZEtyy7TBv46SrJ7oHbWbUZctzajvsPsI6rzueNx6EL99TdzclFuITzgF9QFuIu8P5u6LecTt9zB1jBbPOrXgWJa3fI0lIzY2ZpR6deiWSfiOOy1a4DlUMNOA8fZiD4ZuqoNogMhvnHbHw8DXoe4lXKoxcz_jR3gmyLZ4xsnbJv-bKilvt2UA8bCqAYMumvZjQaeJknFMYMP3aQ7rSiQtPDTxxaCItU73moYetv4A2xbgoDADoBOqJG-aBuUgC4o1r6GwK9BGrrcwKrRSmksD_5U5AcoW89afDYRKt7-_uerh8tpYVRHnkv14Op3diI9W20rHvoRicXFYXMlETVuChlNXqJb3i50tKyNX0auP3ObmPQMUF86LIw60MutmbZZdBOPOoMEpmE5mSgsYiNqZjsilgNUN19rZHylJwjWeq57ICtdbjQ7gQ - - - 200 - text/html;+charset=utf-8 65.8096ms
2021-04-01 09:36:20.235 +00:00 [INF] Request starting HTTP/2 GET https://localhost:44322/Abp/ServiceProxyScript - -
2021-04-01 09:36:20.241 +00:00 [INF] Executing endpoint 'Volo.Abp.AspNetCore.Mvc.ProxyScripting.AbpServiceProxyScriptController.GetAll (Volo.Abp.AspNetCore.Mvc)'
2021-04-01 09:36:20.241 +00:00 [INF] Route matched with {area = "Abp", action = "GetAll", controller = "AbpServiceProxyScript", page = ""}. Executing controller action with signature Microsoft.AspNetCore.Mvc.ActionResult GetAll(Volo.Abp.AspNetCore.Mvc.ProxyScripting.ServiceProxyGenerationModel) on controller Volo.Abp.AspNetCore.Mvc.ProxyScripting.AbpServiceProxyScriptController (Volo.Abp.AspNetCore.Mvc).
2021-04-01 09:36:20.243 +00:00 [INF] Request starting HTTP/2 GET https://localhost:44322/Abp/ApplicationConfigurationScript - -
2021-04-01 09:36:20.245 +00:00 [INF] Executing ContentResult with HTTP Response ContentType of application/javascript
2021-04-01 09:36:20.246 +00:00 [INF] Executed action Volo.Abp.AspNetCore.Mvc.ProxyScripting.AbpServiceProxyScriptController.GetAll (Volo.Abp.AspNetCore.Mvc) in 4.902ms
2021-04-01 09:36:20.246 +00:00 [INF] Executed endpoint 'Volo.Abp.AspNetCore.Mvc.ProxyScripting.AbpServiceProxyScriptController.GetAll (Volo.Abp.AspNetCore.Mvc)'
2021-04-01 09:36:20.247 +00:00 [INF] Request finished HTTP/2 GET https://localhost:44322/Abp/ServiceProxyScript - - - 200 31490 application/javascript 12.0188ms
2021-04-01 09:36:20.247 +00:00 [INF] Executing endpoint 'Volo.Abp.AspNetCore.Mvc.ApplicationConfigurations.AbpApplicationConfigurationScriptController.Get (Volo.Abp.AspNetCore.Mvc)'
2021-04-01 09:36:20.248 +00:00 [INF] Route matched with {area = "Abp", action = "Get", controller = "AbpApplicationConfigurationScript", page = ""}. Executing controller action with signature System.Threading.Tasks.Task`1[Microsoft.AspNetCore.Mvc.ActionResult] Get() on controller Volo.Abp.AspNetCore.Mvc.ApplicationConfigurations.AbpApplicationConfigurationScriptController (Volo.Abp.AspNetCore.Mvc).
2021-04-01 09:36:20.252 +00:00 [DBG] Executing AbpApplicationConfigurationAppService.GetAsync()...
2021-04-01 09:36:20.464 +00:00 [DBG] Executed AbpApplicationConfigurationAppService.GetAsync().
2021-04-01 09:36:20.487 +00:00 [INF] Executing ContentResult with HTTP Response ContentType of application/javascript
2021-04-01 09:36:20.489 +00:00 [INF] Executed action Volo.Abp.AspNetCore.Mvc.ApplicationConfigurations.AbpApplicationConfigurationScriptController.Get (Volo.Abp.AspNetCore.Mvc) in 241.4998ms
2021-04-01 09:36:20.489 +00:00 [INF] Executed endpoint 'Volo.Abp.AspNetCore.Mvc.ApplicationConfigurations.AbpApplicationConfigurationScriptController.Get (Volo.Abp.AspNetCore.Mvc)'
2021-04-01 09:36:20.491 +00:00 [INF] Request finished HTTP/2 GET https://localhost:44322/Abp/ApplicationConfigurationScript - - - 200 98922 application/javascript 248.7186ms

16 Answer(s)
  • User Avatar
    0
    liangshiwei created
    Support Team Fullstack Developer

    HI,

    • Steps to reproduce the issue:
  • User Avatar
    0
    viswajwalith created

    HI,

    • Steps to reproduce the issue:

    Step 1: We created the Application using MicroService Template with Entity Core for SQL server & Angulat UI Step 2: Created a Sepearte Custom Module Step 3: Manually Included the Custom module with MongoDB (for this module) Step 4: Included the Project References for Custom module by compaing with Product Services Project Step 5: Made the entries into Identity and Administration Databases for Custom Module by compaing with Product Services Project Step 6: Trying to Authenticate the Custom Module API using Swagger, Then we are not able to autheticate. On top of it in UI premissions related to custom module is not showing in screen

    Let me know if you need any more details.

  • User Avatar
    0
    liangshiwei created
    Support Team Fullstack Developer

    Hi,

    Can I check it remotely? shiwei.liang@volosoft.com

  • User Avatar
    0
    maliming created
    Support Team Fullstack Developer

    hi viswajwalith

    [ERR] Scope EmployeeManagement not found in store.

    It seems the identity server doesn't have Employee Management scope. Can you check?

  • User Avatar
    0
    viswajwalith created

    @mailming , Thanks for the inputs. We are able to identify and fix the issue in UI on Friday. We are able to see the Permissions List showing up in UI and Swagger also getting Authenticated, but Authentication with SWAGGER is not consistent. Sometimes we are getting "Auth ErrorError, error: invalid_client", not sure why Swagger is not consisent

  • User Avatar
    0
    maliming created
    Support Team Fullstack Developer

    Auth ErrorError, error: invalid_client

    Can you share the full error message?

  • User Avatar
    0
    viswajwalith created

    Auth ErrorError, error: invalid_client

    Can you share the full error message?

    Here suprise is from second attempt it is getting authenticated, here is the log

    2021-04-06 10:13:38.255 +00:00 [INF] Request starting HTTP/2 POST https://localhost:44322/Account/Login?ReturnUrl=%2Fconnect%2Fauthorize%2Fcallback%3Fresponse_type%3Dcode%26client_id%3DEmployeeManagement_Swagger%26redirect_uri%3Dhttps%253A%252F%252Flocalhost%253A44353%252Fswagger%252Foauth2-redirect.html%26scope%3DEmployeeManagement%26state%3DVHVlIEFwciAwNiAyMDIxIDEwOjEzOjIwIEdNVCswMDAwIChHcmVlbndpY2ggTWVhbiBUaW1lKQ%253D%253D application/x-www-form-urlencoded 632 2021-04-06 10:13:38.259 +00:00 [INF] CORS policy execution failed. 2021-04-06 10:13:38.259 +00:00 [INF] Request origin https://localhost:44322 does not have permission to access the resource. 2021-04-06 10:13:38.263 +00:00 [INF] Identity.Application was not authenticated. Failure message: Unprotect ticket failed 2021-04-06 10:13:38.279 +00:00 [INF] No CORS policy found for the specified request. 2021-04-06 10:13:38.280 +00:00 [INF] Identity.Application was not authenticated. Failure message: Unprotect ticket failed 2021-04-06 10:13:38.281 +00:00 [INF] Identity.Application was not authenticated. Failure message: Unprotect ticket failed 2021-04-06 10:13:38.282 +00:00 [INF] Executing endpoint '/Account/Login' 2021-04-06 10:13:38.282 +00:00 [INF] Route matched with {page = "/Account/Login", area = "", action = "", controller = ""}. Executing page /Account/Login 2021-04-06 10:13:38.282 +00:00 [INF] Skipping the execution of current filter as its not the most effective filter implementing the policy Microsoft.AspNetCore.Mvc.ViewFeatures.IAntiforgeryPolicy 2021-04-06 10:13:38.341 +00:00 [INF] Executing handler method Volo.Abp.Account.Public.Web.Pages.Account.LoginModel.OnPostAsync - ModelState is "Valid" 2021-04-06 10:13:38.463 +00:00 [WRN] Ldap login feature is not enabled! 2021-04-06 10:13:38.851 +00:00 [DBG] Augmenting SignInContext 2021-04-06 10:13:38.852 +00:00 [DBG] Adding idp claim with value: local 2021-04-06 10:13:38.852 +00:00 [DBG] Adding auth_time claim with value: 1617704018 2021-04-06 10:13:38.854 +00:00 [INF] Identity.Application was not authenticated. Failure message: Unprotect ticket failed 2021-04-06 10:13:38.864 +00:00 [INF] AuthenticationScheme: Identity.Application signed in. 2021-04-06 10:13:38.999 +00:00 [DBG] Added 0 entity changes to the current audit log 2021-04-06 10:13:39.000 +00:00 [DBG] Added 0 entity changes to the current audit log 2021-04-06 10:13:39.006 +00:00 [INF] {"Username":"admin","Provider":null,"ProviderUserId":null,"SubjectId":"74a01d76-3202-1bdd-8710-39fb6504f180","DisplayName":"admin","Endpoint":"UI","ClientId":null,"Category":"Authentication","Name":"User Login Success","EventType":"Success","Id":1000,"Message":null,"ActivityId":"8000000e-0000-f800-b63f-84710c7967bb","TimeStamp":"2021-04-06T10:13:39.0000000Z","ProcessId":12824,"LocalIpAddress":"::1:44322","RemoteIpAddress":"::1","$type":"UserLoginSuccessEvent"} 2021-04-06 10:13:39.008 +00:00 [INF] Executed handler method OnPostAsync, returned result Microsoft.AspNetCore.Mvc.RedirectResult. 2021-04-06 10:13:39.009 +00:00 [INF] Executing RedirectResult, redirecting to /connect/authorize/callback?response_type=code&client_id=EmployeeManagement_Swagger&redirect_uri=https%3A%2F%2Flocalhost%3A44353%2Fswagger%2Foauth2-redirect.html&scope=EmployeeManagement&state=VHVlIEFwciAwNiAyMDIxIDEwOjEzOjIwIEdNVCswMDAwIChHcmVlbndpY2ggTWVhbiBUaW1lKQ%3D%3D. 2021-04-06 10:13:39.009 +00:00 [INF] Executed page /Account/Login in 726.8532ms 2021-04-06 10:13:39.009 +00:00 [INF] Executed endpoint '/Account/Login' 2021-04-06 10:13:39.149 +00:00 [DBG] Added 0 entity changes to the current audit log 2021-04-06 10:13:39.149 +00:00 [DBG] Added 0 entity changes to the current audit log 2021-04-06 10:13:39.155 +00:00 [INF] Request finished HTTP/2 POST https://localhost:44322/Account/Login?ReturnUrl=%2Fconnect%2Fauthorize%2Fcallback%3Fresponse_type%3Dcode%26client_id%3DEmployeeManagement_Swagger%26redirect_uri%3Dhttps%253A%252F%252Flocalhost%253A44353%252Fswagger%252Foauth2-redirect.html%26scope%3DEmployeeManagement%26state%3DVHVlIEFwciAwNiAyMDIxIDEwOjEzOjIwIEdNVCswMDAwIChHcmVlbndpY2ggTWVhbiBUaW1lKQ%253D%253D application/x-www-form-urlencoded 632 - 302 - - 899.7578ms 2021-04-06 10:13:39.158 +00:00 [INF] Request starting HTTP/2 GET https://localhost:44322/connect/authorize/callback?response_type=code&client_id=EmployeeManagement_Swagger&redirect_uri=https%3A%2F%2Flocalhost%3A44353%2Fswagger%2Foauth2-redirect.html&scope=EmployeeManagement&state=VHVlIEFwciAwNiAyMDIxIDEwOjEzOjIwIEdNVCswMDAwIChHcmVlbndpY2ggTWVhbiBUaW1lKQ%3D%3D - - 2021-04-06 10:13:39.172 +00:00 [DBG] Request path /connect/authorize/callback matched to endpoint type Authorize 2021-04-06 10:13:39.174 +00:00 [DBG] Endpoint enabled: Authorize, successfully created handler: IdentityServer4.Endpoints.AuthorizeCallbackEndpoint 2021-04-06 10:13:39.174 +00:00 [INF] Invoking IdentityServer endpoint: IdentityServer4.Endpoints.AuthorizeCallbackEndpoint for /connect/authorize/callback 2021-04-06 10:13:39.176 +00:00 [DBG] Start authorize callback request 2021-04-06 10:13:39.179 +00:00 [DBG] User in authorize request: 74a01d76-3202-1bdd-8710-39fb6504f180 2021-04-06 10:13:39.179 +00:00 [DBG] Start authorize request protocol validation 2021-04-06 10:13:39.193 +00:00 [DBG] client configuration validation for client EmployeeManagement_Swagger succeeded. 2021-04-06 10:13:39.193 +00:00 [DBG] Checking for PKCE parameters 2021-04-06 10:13:39.193 +00:00 [DBG] No PKCE used. 2021-04-06 10:13:39.205 +00:00 [DBG] Calling into custom validator: IdentityServer4.Validation.DefaultCustomAuthorizeRequestValidator 2021-04-06 10:13:39.206 +00:00 [DBG] ValidatedAuthorizeRequest {"ClientId":"EmployeeManagement_Swagger","ClientName":"EmployeeManagement_Swagger","RedirectUri":"https://localhost:44353/swagger/oauth2-redirect.html","AllowedRedirectUris":["https://localhost:44353/swagger/oauth2-redirect.html"],"SubjectId":"74a01d76-3202-1bdd-8710-39fb6504f180","ResponseType":"code","ResponseMode":"query","GrantType":"authorization_code","RequestedScopes":"EmployeeManagement","State":"VHVlIEFwciAwNiAyMDIxIDEwOjEzOjIwIEdNVCswMDAwIChHcmVlbndpY2ggTWVhbiBUaW1lKQ==","UiLocales":null,"Nonce":null,"AuthenticationContextReferenceClasses":null,"DisplayMode":null,"PromptMode":"","MaxAge":null,"LoginHint":null,"SessionId":"74187765FF2D5C75B66CE7BF5BA49B12","Raw":{"response_type":"code","client_id":"EmployeeManagement_Swagger","redirect_uri":"https://localhost:44353/swagger/oauth2-redirect.html","scope":"EmployeeManagement","state":"VHVlIEFwciAwNiAyMDIxIDEwOjEzOjIwIEdNVCswMDAwIChHcmVlbndpY2ggTWVhbiBUaW1lKQ=="},"$type":"AuthorizeRequestValidationLog"} 2021-04-06 10:13:39.281 +00:00 [DBG] Client is configured to not require consent, no consent is required 2021-04-06 10:13:39.284 +00:00 [DBG] Creating Authorization Code Flow response. 2021-04-06 10:13:39.385 +00:00 [INF] {"ClientId":"EmployeeManagement_Swagger","ClientName":"EmployeeManagement_Swagger","RedirectUri":"https://localhost:44353/swagger/oauth2-redirect.html","Endpoint":"Authorize","SubjectId":"74a01d76-3202-1bdd-8710-39fb6504f180","Scopes":"EmployeeManagement","GrantType":"authorization_code","Tokens":[{"TokenType":"code","TokenValue":"****22C4","$type":"Token"}],"Category":"Token","Name":"Token Issued Success","EventType":"Success","Id":2000,"Message":null,"ActivityId":"80000009-0003-ff00-b63f-84710c7967bb","TimeStamp":"2021-04-06T10:13:39.0000000Z","ProcessId":12824,"LocalIpAddress":"::1:44322","RemoteIpAddress":"::1","$type":"TokenIssuedSuccessEvent"} 2021-04-06 10:13:39.387 +00:00 [DBG] Authorize endpoint response {"SubjectId":"74a01d76-3202-1bdd-8710-39fb6504f180","ClientId":"EmployeeManagement_Swagger","RedirectUri":"https://localhost:44353/swagger/oauth2-redirect.html","State":"VHVlIEFwciAwNiAyMDIxIDEwOjEzOjIwIEdNVCswMDAwIChHcmVlbndpY2ggTWVhbiBUaW1lKQ==","Scope":"EmployeeManagement","Error":null,"ErrorDescription":null,"$type":"AuthorizeResponseLog"} 2021-04-06 10:13:39.393 +00:00 [DBG] Augmenting SignInContext 2021-04-06 10:13:39.393 +00:00 [INF] AuthenticationScheme: Identity.Application signed in. 2021-04-06 10:13:39.410 +00:00 [INF] Request finished HTTP/2 GET https://localhost:44322/connect/authorize/callback?response_type=code&client_id=EmployeeManagement_Swagger&redirect_uri=https%3A%2F%2Flocalhost%3A44353%2Fswagger%2Foauth2-redirect.html&scope=EmployeeManagement&state=VHVlIEFwciAwNiAyMDIxIDEwOjEzOjIwIEdNVCswMDAwIChHcmVlbndpY2ggTWVhbiBUaW1lKQ%3D%3D - - - 302 - - 251.5709ms 2021-04-06 10:13:39.642 +00:00 [INF] Request starting HTTP/2 OPTIONS https://localhost:44322/connect/token - - 2021-04-06 10:13:39.643 +00:00 [INF] CORS policy execution successful. 2021-04-06 10:13:39.645 +00:00 [INF] Request finished HTTP/2 OPTIONS https://localhost:44322/connect/token - - - 204 - - 3.3956ms 2021-04-06 10:13:39.647 +00:00 [INF] Request starting HTTP/2 POST https://localhost:44322/connect/token application/x-www-form-urlencoded 236 2021-04-06 10:13:39.648 +00:00 [INF] CORS policy execution successful. 2021-04-06 10:13:39.655 +00:00 [DBG] CORS request made for path: /connect/token from origin: https://localhost:44353 2021-04-06 10:13:39.698 +00:00 [WRN] Origin is not allowed: https://localhost:44353 2021-04-06 10:13:39.700 +00:00 [WRN] CorsPolicyService did not allow origin: https://localhost:44353 2021-04-06 10:13:39.701 +00:00 [INF] No CORS policy found for the specified request. 2021-04-06 10:13:39.702 +00:00 [DBG] Request path /connect/token matched to endpoint type Token 2021-04-06 10:13:40.007 +00:00 [DBG] Endpoint enabled: Token, successfully created handler: IdentityServer4.Endpoints.TokenEndpoint 2021-04-06 10:13:40.007 +00:00 [INF] Invoking IdentityServer endpoint: IdentityServer4.Endpoints.TokenEndpoint for /connect/token 2021-04-06 10:13:40.012 +00:00 [DBG] Start token request. 2021-04-06 10:13:40.015 +00:00 [DBG] Start client validation 2021-04-06 10:13:40.020 +00:00 [DBG] Start parsing Basic Authentication secret 2021-04-06 10:13:40.022 +00:00 [DBG] Start parsing for secret in post body 2021-04-06 10:13:40.023 +00:00 [DBG] Parser found secret: PostBodySecretParser 2021-04-06 10:13:40.023 +00:00 [DBG] Secret id found: EmployeeManagement_Swagger 2021-04-06 10:13:40.038 +00:00 [DBG] client configuration validation for client EmployeeManagement_Swagger succeeded. 2021-04-06 10:13:40.047 +00:00 [DBG] No matching hashed secret found. 2021-04-06 10:13:40.047 +00:00 [DBG] Secret validators could not validate secret 2021-04-06 10:13:40.048 +00:00 [INF] {"ClientId":"EmployeeManagement_Swagger","Category":"Authentication","Name":"Client Authentication Failure","EventType":"Failure","Id":1011,"Message":"Invalid client secret","ActivityId":"8000000b-0003-ff00-b63f-84710c7967bb","TimeStamp":"2021-04-06T10:13:40.0000000Z","ProcessId":12824,"LocalIpAddress":"::1:44322","RemoteIpAddress":"::1","$type":"ClientAuthenticationFailureEvent"} 2021-04-06 10:13:40.048 +00:00 [ERR] Client secret validation failed for client: EmployeeManagement_Swagger. 2021-04-06 10:13:40.065 +00:00 [INF] Request finished HTTP/2 POST https://localhost:44322/connect/token application/x-www-form-urlencoded 236 - 400 - application/json;+charset=UTF-8 417.4008ms

  • User Avatar
    0
    gterdem created
    Senior .NET Developer

    2021-04-06 10:13:40.048 +00:00 [INF] {"ClientId":"EmployeeManagement_Swagger","Category":"Authentication","Name":"Client Authentication Failure","EventType":"Failure","Id":1011,"Message":"Invalid client secret","ActivityId":"8000000b-0003-ff00-b63f-84710c7967bb","TimeStamp":"2021-04-06T10:13:40.0000000Z","ProcessId":12824,"LocalIpAddress":"::1:44322","RemoteIpAddress":"::1","$type":"ClientAuthenticationFailureEvent"} 2021-04-06 10:13:40.048 +00:00 [ERR] Client secret validation failed for client: EmployeeManagement_Swagger.

    The client secret you provided is wrong.

  • User Avatar
    0
    viswajwalith created

    2021-04-06 10:13:40.048 +00:00 [INF] {"ClientId":"EmployeeManagement_Swagger","Category":"Authentication","Name":"Client Authentication Failure","EventType":"Failure","Id":1011,"Message":"Invalid client secret","ActivityId":"8000000b-0003-ff00-b63f-84710c7967bb","TimeStamp":"2021-04-06T10:13:40.0000000Z","ProcessId":12824,"LocalIpAddress":"::1:44322","RemoteIpAddress":"::1","$type":"ClientAuthenticationFailureEvent"} 2021-04-06 10:13:40.048 +00:00 [ERR] Client secret validation failed for client: EmployeeManagement_Swagger.

    The client secret you provided is wrong.

    I dont think so, because it is getting autenticated in the next attept. If CLient Secret is the proble how come it can be authenticated from next time. If you I can share the screen and show u.

  • User Avatar
    0
    gterdem created
    Senior .NET Developer

    2021-04-06 10:13:40.048 +00:00 [INF] {"ClientId":"EmployeeManagement_Swagger","Category":"Authentication","Name":"Client Authentication Failure","EventType":"Failure","Id":1011,"Message":"Invalid client secret","ActivityId":"8000000b-0003-ff00-b63f-84710c7967bb","TimeStamp":"2021-04-06T10:13:40.0000000Z","ProcessId":12824,"LocalIpAddress":"::1:44322","RemoteIpAddress":"::1","$type":"ClientAuthenticationFailureEvent"} 2021-04-06 10:13:40.048 +00:00 [ERR] Client secret validation failed for client: EmployeeManagement_Swagger.

    The client secret you provided is wrong.

    I dont think so, because it is getting autenticated in the next attept. If CLient Secret is the proble how come it can be authenticated from next time. If you I can share the screen and show u.

    Is the issue solved? IdentityServer doesn't throw random errors.

    The logs below indicates that EmployeeManagement_Swagger client secret is wrong (probably doesn't exist).

    2021-04-06 10:13:40.048 +00:00 [INF] {"ClientId":"EmployeeManagement_Swagger","Category":"Authentication","Name":"Client Authentication Failure","EventType":"Failure","Id":1011,"Message":"Invalid client secret","ActivityId":"8000000b-0003-ff00-b63f-84710c7967bb","TimeStamp":"2021-04-06T10:13:40.0000000Z","ProcessId":12824,"LocalIpAddress":"::1:44322","RemoteIpAddress":"::1","$type":"ClientAuthenticationFailureEvent"} 2021-04-06 10:13:40.048 +00:00 [ERR] Client secret validation failed for client: EmployeeManagement_Swagger.

    Navigate to appsettings of your api gateway and check the IdentityServer section. There should be IdentityModel configuration like: <br>

    "AuthServer": {
      "Authority": "https://localhost:44322",
      "RequireHttpsMetadata": "true",
      "SwaggerClientId": "EmployeeManagement_Swagger",
      "SwaggerClientSecret": "1q2w3e*"
    },
    

    This is the configuration of AddAbpSwaggerGenWithOAuth.

    Please, share your appsettings identityserver configuration and swaggerAuth configuration located in module if the problem still persists.

  • User Avatar
    0
    viswajwalith created

    2021-04-06 10:13:40.048 +00:00 [INF] {"ClientId":"EmployeeManagement_Swagger","Category":"Authentication","Name":"Client Authentication Failure","EventType":"Failure","Id":1011,"Message":"Invalid client secret","ActivityId":"8000000b-0003-ff00-b63f-84710c7967bb","TimeStamp":"2021-04-06T10:13:40.0000000Z","ProcessId":12824,"LocalIpAddress":"::1:44322","RemoteIpAddress":"::1","$type":"ClientAuthenticationFailureEvent"} 2021-04-06 10:13:40.048 +00:00 [ERR] Client secret validation failed for client: EmployeeManagement_Swagger.

    The client secret you provided is wrong.

    I dont think so, because it is getting autenticated in the next attept. If CLient Secret is the proble how come it can be authenticated from next time. If you I can share the screen and show u.

    Is the issue solved? IdentityServer doesn't throw random errors.

    The logs below indicates that EmployeeManagement_Swagger client secret is wrong (probably doesn't exist).

    2021-04-06 10:13:40.048 +00:00 [INF] {"ClientId":"EmployeeManagement_Swagger","Category":"Authentication","Name":"Client Authentication Failure","EventType":"Failure","Id":1011,"Message":"Invalid client secret","ActivityId":"8000000b-0003-ff00-b63f-84710c7967bb","TimeStamp":"2021-04-06T10:13:40.0000000Z","ProcessId":12824,"LocalIpAddress":"::1:44322","RemoteIpAddress":"::1","$type":"ClientAuthenticationFailureEvent"} 2021-04-06 10:13:40.048 +00:00 [ERR] Client secret validation failed for client: EmployeeManagement_Swagger.

    Navigate to appsettings of your api gateway and check the IdentityServer section. There should be IdentityModel configuration like: <br>

    "AuthServer": { 
      "Authority": "https://localhost:44322", 
      "RequireHttpsMetadata": "true", 
      "SwaggerClientId": "EmployeeManagement_Swagger", 
      "SwaggerClientSecret": "1q2w3e*" 
    }, 
    

    This is the configuration of AddAbpSwaggerGenWithOAuth.

    Please, share your appsettings identityserver configuration and swaggerAuth configuration located in module if the problem still persists.

    I think its better to have a screenshare session to explain the exact issue. Please advise.

  • User Avatar
    0
    gterdem created
    Senior .NET Developer

    I am not able to make screenshare sessions. Please try the solutions above and share the results via this platform.

  • User Avatar
    0
    viswajwalith created

    I am not able to make screenshare sessions. Please try the solutions above and share the results via this platform.

    We are still facing the issue of accessing the API's using Swagger client of InternalGateway and WebGateway. I have qigen all required permissions. Still getting the error "Auth ErrorTypeError: Failed to fetch"

    I hope someone from support team to help us in access the API's from Swagger client of gateway Applications.

  • User Avatar
    0
    viswajwalith created

    I am not able to make screenshare sessions. Please try the solutions above and share the results via this platform.

    We are still facing the issue of accessing the API's using Swagger client of InternalGateway and WebGateway. I have qigen all required permissions. Still getting the error "Auth ErrorTypeError: Failed to fetch"

    I hope someone from support team to help us in access the API's from Swagger client of gateway Applications.

    @liangshiwei let me know if u want to have a screen share

  • User Avatar
    0
    liangshiwei created
    Support Team Fullstack Developer

    Hi, @viswajwalith

    Yes we can have a remote metting. shiwei.liang@volosoft.com

  • User Avatar
    0
    viswajwalith created

    Hi, @viswajwalith

    Yes we can have a remote metting. shiwei.liang@volosoft.com

    @liangshiwei I already sent a meeting invite and I think that time not suits you. Please send the meeting invite based on ur availability.

Made with ❤️ on ABP v9.1.0-preview. Updated on December 05, 2024, 12:19