Open Closed

2FA broken due to wrong case sensitivity on on OpenIddict request #5438


User avatar
0
mogau.mokgabudi created
  • ABP Framework version: v7.2.3
  • UI type: Angular
  • DB provider: EF Core
  • Tiered (MVC) or Auth Server Separated (Angular): no
  • Exception message and stack trace:
  • Steps to reproduce the issue:" Create a new solution with 2FA enabled, login, and once on the security code screen when you enter the code the OpenIddict request is rejected because of the wrong params casing

The wrong casing was sent by the security code service on angular

OpenIddict rejects the auth request because it can't find the relevant params for username and password (incorrect case sensitivity)

This breaks the 2FA flow because OpenIddict is rejecting the request Is it possible to override the security code service in the meantime?


3 Answer(s)
  • User Avatar
    0
    masum.ulu created
    Support Team Angular Expert

    Hello,

    Sorry for late answer, have you tried to request with correct casing ? Is it work then because in this version I've tried and It didn't throw exception

  • User Avatar
    0
    mogau.mokgabudi created

    Hi Masum,

    Unfortunately I cannot change the abp angular code where the issue is, I have added an interceptor to remap those fields to mitigate the issue. Which version did you run a working version on?

  • User Avatar
    0
    masum.ulu created
    Support Team Angular Expert

    Hello,

    Do you still have this problem ? Have you tried with the new version ?

Made with ❤️ on ABP v9.1.0-preview. Updated on December 05, 2024, 12:19