Open Closed

Issues with Login to Identity Server when using Docker setup #2510


User avatar
0
Sbengtson created
  • ABP Framework version: v5.1.3
  • UI type: MVC
  • DB provider: EF Core
  • Tiered (MVC) or Identity Server Separated (Angular): yes
  • Exception message and stack trace:No error messages
  • Steps to reproduce the issue:"Navigate to the Public web page, click login, enter credentials, click login button.

This is using a docker environment.

  • Web Host
  • Public Web Host
  • HttpAPI Host
  • IdentityServer
  • Redis
  • MSSql Server

Hello, I am having a problem with a docker setup of the framework, after attempting to login the identity server does not redirect back to the site as expected and instead redirects back to the Login page. There are no errors indicating invalid login or other errors. There are also no errors in the log file for any of the services.

Configuration, note that sensitive information is replaced with "????????"

DBMigrator Configuration File:

{
  "ConnectionStrings": {
    "Default": "Server=localhost;Database=????????;Trusted_Connection=True"
  },
  "IdentityServer": {
    "Clients": {
      "Portal_Web": {
        "ClientId": "Portal_Web",
        "RootUrl": "http://host.docker.internal:9005"
      },
      "Portal_Web_Public": {
        "ClientId": "Portal_Web_Public",
        "RootUrl": "http://host.docker.internal:9008"
      },
      "Portal_Web_Public_Tiered": {
        "ClientId": "Portal_Web_Public_Tiered",
        "RootUrl": "http://host.docker.internal:9008"
      },
      "Portal_App": {
        "ClientId": "Portal_App",
        "RootUrl": "http://localhost:4200"
      },
      "Portal_Swagger": {
        "ClientId": "Portal_Swagger",
        "RootUrl": "http://host.docker.internal:9007/swagger/oauth2-redirect.html"
      }
    }
  }
}

Identity Server Configuration:

  "App": {
    "SelfUrl": "http://host.docker.internal:9006",
    "ClientUrl": "http://localhost:4200",
    "CorsOrigins": "https://*.Portal.com,http://host.docker.internal:9005,http://host.docker.internal:9005",
    "RedirectAllowedUrls": ""
  },
  "ConnectionStrings": {
    "Default": "Server=host.docker.internal;Database=CTS_Portal;User Id=docker;Password=dockertime"
  },
  "Redis": {
    "Configuration": "host.docker.internal"
  },
  "StringEncryption": {
    "DefaultPassPhrase": "ZY4h7Pg08tNZWA0d"
  }
}

Public Web Configuration

  "App": {
    "SelfUrl": "http://host.docker.internal:9008"
  },
  "RemoteServices": {
    "Default": {
      "BaseUrl": "http://host.docker.internal:9007/"
    }
  },
  "Redis": {
    "Configuration": "host.docker.internal"
  },
  "AuthServer": {
    "Authority": "http://host.docker.internal:9006",
    "RequireHttpsMetadata": "false",
    "ClientId": "Portal_Web_Public_Tiered",
    "ClientSecret": "1q2w3e*"
  },
  "StringEncryption": {
    "DefaultPassPhrase": "ZY4h7Pg08tNZWA0d"
  }
}

Database: [IdentityServerClients]

Id	ClientId	ClientName	Description	ClientUri	LogoUri	Enabled	ProtocolType	RequireClientSecret	RequireConsent	AllowRememberConsent	AlwaysIncludeUserClaimsInIdToken	RequirePkce	AllowPlainTextPkce	RequireRequestObject	AllowAccessTokensViaBrowser	FrontChannelLogoutUri	FrontChannelLogoutSessionRequired	BackChannelLogoutUri	BackChannelLogoutSessionRequired	AllowOfflineAccess	IdentityTokenLifetime	AllowedIdentityTokenSigningAlgorithms	AccessTokenLifetime	AuthorizationCodeLifetime	ConsentLifetime	AbsoluteRefreshTokenLifetime	SlidingRefreshTokenLifetime	RefreshTokenUsage	UpdateAccessTokenClaimsOnRefresh	RefreshTokenExpiration	AccessTokenType	EnableLocalLogin	IncludeJwtId	AlwaysSendClientClaims	ClientClaimsPrefix	PairWiseSubjectSalt	UserSsoLifetime	UserCodeType	DeviceCodeLifetime	ExtraProperties	ConcurrencyStamp	CreationTime	CreatorId	LastModificationTime	LastModifierId	IsDeleted	DeleterId	DeletionTime
7C63146A-9826-D445-5819-3A01B8B81633	Portal_Web	Portal_Web	Portal_Web	NULL	NULL	1	oidc	1	0	1	1	0	0	0	0	http://host.docker.internal:9005/signin-oidc/Account/FrontChannelLogout	1	NULL	1	1	300	NULL	31536000	300	NULL	31536000	1296000	1	0	1	0	1	0	0	client_	NULL	NULL	NULL	300	{}	478cc63a033043558ce3f6f635bbc03d	2022-01-29 15:54:10.5708075	NULL	2022-01-29 15:54:10.6516690	NULL	0	NULL	NULL
D2987BF6-29A1-4656-F5BF-3A01B8B8176C	Portal_Web_Public	Portal_Web_Public	Portal_Web_Public	NULL	NULL	1	oidc	1	0	1	1	0	0	0	0	http://host.docker.internal:9008/signin-oidc/Account/FrontChannelLogout	1	NULL	1	1	300	NULL	31536000	300	NULL	31536000	1296000	1	0	1	0	1	0	0	client_	NULL	NULL	NULL	300	{}	ef717d91438e41d2b1dded8d94d958a7	2022-01-29 15:54:10.6694638	NULL	2022-01-29 15:54:10.8124826	NULL	0	NULL	NULL
E7D9F6A8-2B5E-FF40-3E24-3A01B8B81803	Portal_Web_Public_Tiered	Portal_Web_Public_Tiered	Portal_Web_Public_Tiered	NULL	NULL	1	oidc	1	0	1	1	0	0	0	0	http://host.docker.internal:9008/signin-oidc/Account/FrontChannelLogout	1	NULL	1	1	300	NULL	31536000	300	NULL	31536000	1296000	1	0	1	0	1	0	0	client_	NULL	NULL	NULL	300	{}	5e69ddd99d814064b3aaaed697754765	2022-01-29 15:54:10.8206772	NULL	2022-01-29 15:54:10.8396091	NULL	0	NULL	NULL
4E818963-2EAA-34C8-651E-3A01B8B8181F	Portal_App	Portal_App	Portal_App	NULL	NULL	1	oidc	0	0	1	1	0	0	0	0	NULL	1	NULL	1	1	300	NULL	31536000	300	NULL	31536000	1296000	1	0	1	0	1	0	0	client_	NULL	NULL	NULL	300	{}	bc85738a965b41c3b5ef24c01cd332ba	2022-01-29 15:54:10.8486102	NULL	2022-01-29 15:54:10.8967364	NULL	0	NULL	NULL
F7AA1E6A-19CE-4038-8148-3A01B8B81858	Portal_Swagger	Portal_Swagger	Portal_Swagger	NULL	NULL	1	oidc	0	0	1	1	0	0	0	0	NULL	1	NULL	1	1	300	NULL	31536000	300	NULL	31536000	1296000	1	0	1	0	1	0	0	client_	NULL	NULL	NULL	300	{}	616b797dc3f843ffab0148c6e02332ca	2022-01-29 15:54:10.9050681	NULL	2022-01-29 15:54:10.9457682	NULL	0	NULL	NULL

Database IdentityServerClientCorsOrigin

ClientId	Origin
7C63146A-9826-D445-5819-3A01B8B81633	http://host.docker.internal:9005
D2987BF6-29A1-4656-F5BF-3A01B8B8176C	http://host.docker.internal:9008
4E818963-2EAA-34C8-651E-3A01B8B8181F	http://localhost:4200
F7AA1E6A-19CE-4038-8148-3A01B8B81858	https://localhost:44308

Database IdentityServerClientRedirectUris

ClientId	RedirectUri
7C63146A-9826-D445-5819-3A01B8B81633	http://host.docker.internal:9005/signin-oidc
D2987BF6-29A1-4656-F5BF-3A01B8B8176C	http://host.docker.internal:9008/signin-oidc
E7D9F6A8-2B5E-FF40-3E24-3A01B8B81803	http://host.docker.internal:9008/signin-oidc
4E818963-2EAA-34C8-651E-3A01B8B8181F	http://localhost:4200
F7AA1E6A-19CE-4038-8148-3A01B8B81858	https://localhost:44308/swagger/oauth2-redirect.html

1 Answer(s)
  • User Avatar
    0
    gterdem created
    Senior .NET Developer

    Try running authorization server on https.

Made with ❤️ on ABP v9.1.0-preview. Updated on December 12, 2024, 07:15