Activities of "FelixKirschner"

Thank you maliming!

Thank you! And what is the proper way to handle this in a normal login with username and password?

Hello, we are using Azure OpenIdConnect for authentication, which works fine so far. The problem: if a user does not exist in a specific table in our database, their authentication state should be invalid. How can we achieve that the authentication flow, after a successful Azure OpenIdConnect login, additionally checks the database and rejects the user if not found? Is maybe the AbpClaimsPrincipalContributor a way to interupt it and check if the user is found?

Thank you for your help!

When I navigate between different pages using the sidebar, the cookie seems to be ignored. However, when I refresh the page in the browser, the cookie is correctly validated, and I am logged out. Is there a simple way to always check the cookie, even when navigating via the sidebar?

Feature did work but some documentation was missing. GitHub Issue: https://github.com/abpframework/abp/issues/22970

Hello, I would like to know the concrete steps for implementing a session timeout using Azure AD in ABP. Because once we are logged in there is no timeout when the user has to log in again. Specifically, I want the user session to expire after 24 hours. We are not using app.UseDynamicClaims(); Thanks in advance!

This code is in my blazor module in the method PreConfigureServices:

        if (!hostingEnvironment.IsDevelopment)
        {
            PreConfigure<AbpOpenIddictAspNetCoreOptions>(options =>
            {
                options.AddDevelopmentEncryptionAndSigningCertificate = false;
            });

            PreConfigure<OpenIddictServerBuilder>(serverBuilder =>
            {
                serverBuilder.AddProductionEncryptionAndSigningCertificate("openiddict.pfx", "...");
            });
        }
        

Configure auth method

            var authenticationBuilder = context.Services.AddAuthentication();

            authenticationBuilder.AddOpenIdConnect(
                authenticationScheme: "AzureOpenId",
                displayName: "...",
                configureOptions: options =>
                {
                    options.Authority = $"https://login.microsoftonline.com/{azTenantId}/v2.0/";
                    options.ClientId = "MyEntraId";
                    options.ResponseType = OpenIdConnectResponseType.CodeIdToken;
                    options.CallbackPath = "MyCallBack";
                    options.ClientSecret = "MySecreat";
                    options.RequireHttpsMetadata = false;
                    options.SaveTokens = true;

                    options.GetClaimsFromUserInfoEndpoint = true;
                    options.ClaimActions.MapJsonKey(ClaimTypes.NameIdentifier, "sub");
                });

The scripts which are added are the following:

<script src="/_content/Volo.Abp.AspNetCore.Components.Web/libs/abp/js/abp.js"></script> <script src="/_content/Volo.Abp.AspNetCore.Components.Web/libs/abp/js/authentication-state-listener.js"> </script><script src="/_content/Volo.Abp.Account.Pro.Public.Blazor.Shared/IdleTracker.js"></script> <script src="/_content/Volo.Saas.Host.Blazor/libs/chart/chart.min.js"></script> <script src="/_content/Volo.Abp.AuditLogging.Blazor/libs/chart/chart.min.js"></script> <script src="/_content/Volo.Abp.AspNetCore.Components.Web.LeptonXTheme/side-menu/libs/bootstrap/js/bootstrap.bundle.min.js"></script> <script src="/_content/Volo.Abp.AspNetCore.Components.Web.LeptonXTheme/side-menu/libs/jquery/jquery.min.js"></script> <script src="/_content/Volo.Abp.AspNetCore.Components.Web.LeptonXTheme/side-menu/libs/bootstrap-datepicker/js/bootstrap-datepicker.min.js"></script> <script src="/_content/Volo.Abp.AspNetCore.Components.Web.LeptonXTheme/side-menu/js/lepton-x.bundle.min.js"></script> <script src="/_content/Volo.Abp.AspNetCore.Components.Server.LeptonXTheme/scripts/leptonx-blazor-compatibility.js"></script> <script src="/_content/Volo.Abp.AspNetCore.Components.Web.LeptonXTheme/scripts/global.js"></Scrip> <script src="_framework/blazor.web.js"></script> <script src="/_framework/aspnetcore-browser-refresh.js"></script></body></html><

So there might be the /Idle/Default.js missing.

What is the easiest way to check if persistent login is enabled?

Yes I am 100% not triggering something on the side with my mouse. Some background jobs are running but I don't think they matter to JS. The idle timer settings are working completly on his own or? Because we got settings defintions too. Is there somewhere a demo side with working idle online?

Hello, I want to try out the new feature Idle Session Timeout. It is activated in the UI, I can see the JS loaded in the browser and I can see it also in the setting management tables. I can see in the application logs every few minutes query to ask the idle times. We are also using app.MapAbpStaticAssets(); Do you got any idea what the problem could be because the popup is not showing up and I am not logged out.

UI:

Browser:

Settings

Hello, today I updated to ABP Version 9.1.3. Did anybody face the issue that after the update all red X changed from the symbol 'fas fa-xmark text-danger' to 'fas fa-ticket-simple text-danger'?

Is this intended? New:

Old: