Activities of "bqabani"

Yes, I know the oAuth flow by default in general,

But I am trying to have better user experience for users based on modern login currently known on mobile apps,

I thought I can login on mobile through external login (google or apple id or SMS OTP) and then send related tokens to backend where the abp custom controller will validate the token then (login or register) and generate a new token for that user.

same like I can have the similar experience on angular where I can customize the account module so the experience will be the same

Please let me know what are the drawback of this solution, and is it doable on ABP ?

Question

I am trying to enable social Login on Web and on Mobile, My web can be configured to login on HostApp (Google, Microsoft , Twitter) However I want to configure (both web and mobile) to external login (google, AppleId , Facebook)

My main concern is the mobile, I did some research I found that the mobile can easily configured to do the login from its own side, but it will only return token that contains the email info, My mobile app can send this user token to server and ask server to login the user and generate bearer token (and refresh token) for that specific user, I am not sure that this is the right approach,

My Mobile app is flutter, and configured external login using firebase - this is what I figured out, please support me with:

  • Is my approach correct?
  • Do you suggest better approach?
  • How to unify the login process on mobile and web? , I do not want the user on mobile to open browser and login there and redirects back to app (front channel),
  • Do you have any resources for this topic

Updated:

https://drive.google.com/file/d/1vQTsEMRmB9gVlrf1OqAYlnfw-K0WyU3u/view?usp=sharing

Done:

Updated Log:

https://drive.google.com/file/d/1Uwib25_aYeCnefpyUzAS2crUDT39vpUT/view?usp=sharing

Waiting for your response

  • ABP Framework version: v9.0.2
  • UI Type: Angular
  • Database System: EF Core (SQL Server)
  • Tiered: yes
  • Auth Server Separated (for Angular): no
  • Exception message and full stack trace:

The token request was successfully extracted: { "grant_type": "authorization_code", "code": "[redacted]", "client_id": "AppName_Swagger", "redirect_uri": "https://my-domain/swagger/oauth2-redirect.html" }

The response was successfully returned as a JSON document: { "error": "invalid_grant", "error_description": "The specified token is invalid.", "error_uri": "https://documentation.openiddict.com/errors/ID2004" }.

  • Steps to reproduce the issue:
  • Create a new Abp app
  • Deploy it to IIS
  • Add SSL
  • Configure urls + run DbMigrator + configure appSettings
  • Test Login on HostApp : worked
  • Logout : worked
  • Open Swagger: try Authorize (Login) : select scope (appname) ,
  • Then redirected to login page automatically, then input credentials
  • redirected back to swagger with error: auth errorError: response status is 400, error: invalid_grant, description: The specified token is invalid.
  • the same scenario for angular : error : infinite redirection between Host and angular , with same error above
  • but login directly using MVC app : worked

Please note that there is no changes on code has been made

for more info, I added log here: https://drive.google.com/file/d/1KVqn0XN3wjbAsq4oPMxAiH3QrzfVzSOb/view?usp=sharing

Yes It was solved, Thank you

The solution was to create a reference for identity service module (not the administration service module)

using : https://docs.abp.io/en/commercial/latest/startup-templates/microservice/synchronous-interservice-communication

The solution was to create a reference for identity service module (not the administration service module)

using : https://docs.abp.io/en/commercial/latest/startup-templates/microservice/synchronous-interservice-communication

Thank you for your prompt answer!

Please provide me with more details, I cannot find IPermissionIntegrationService I searched for it all my solution, Not sure which dependency should I use,

And finally Plaese provide with a blog or documentation reference for that is possible

Thank you

  • ABP Framework version: v7.3.0
  • UI Type: Angular
  • Database System: EF Core (SQL Server)
  • Tiered (for MVC) or Auth Server Separated (for Angular): yes **Micro service **

I have a micro service (for example called Products Microservice) in that microservice I would like to check if a specific user has a permission, this user is not the current user, (I have his email only)

Kindly suggest all available solutions, the best solution that does not make me made connection to administration.

I think I need to use: var rs = await authorizationService.AuthorizeAsync(ClaimsPrincipal, requiredPolicy); but I do not have the (ClaimsPrincipal) and how can I get an instance of it related a specific user ? and is this good solution ?

Kindly advice

Thank you

Showing 1 to 10 of 48 entries
Boost Your Development
ABP Live Training
Packages
See Trainings
Mastering ABP Framework Book
Do you need assistance from an ABP expert?
Schedule a Meeting
Mastering ABP Framework Book
The Official Guide
Mastering
ABP Framework
Learn More
Mastering ABP Framework Book
Made with ❤️ on ABP v9.3.0-preview. Updated on April 16, 2025, 12:13