I would like to get some help from you since I've being searching all around and I can not find the solution for my question,
My use case is the next one:
I have an application developed in ABP 6 and using Angular UI, in the login I have a button which allows me to redirect to a SAML identity provider which is returning a code, I redirect the SAML application to a route in my Angular app and I read the incoming parameters to call a backend endpoint and get the email of the user that succeeded the SAML login process,
So now, I need to get this email, search if this exists in my users table and then generate an access token for that user, as you can see I am not able to use the user password, and I need to generate the token based on the user since in the whole application I am using some claims that are included in the token that is generated with the default password flow
I've being following the tutorial recommended for the community Implementing passwordless authentication with asp.net core, but this is specific for MVC application.
I found the method GenerateUserTokenAsync but it returns a token as string with 5 numbers, and as far as I understand the result of the request to connect/token is aJSON with the access_token, refresh_token and some other keys
Does someone have an idea or solution for this? Thanks!
Hello, I am using OpenIddict as Auth Server
I have followed the example you posted, even though I have an error and it seems like I am not getting the right values from IOptionsMonitor<OpenIddictServerOptions>
I am not sure if this error is because of a missing configuration on my side.
hi
Are you calling your app service method from the authserver website?
Because this options set by auth server website
Hello, I moved the code to the right project, now I am able to generate the token, however when I try to use that token in my API calls the response is Unauthorized, am I missing something else?
Hello I was able to generate the token, I had to include the expire date, not a null value, thanks for the support, however the issue is now on angular side,
When I try to validate the token with OAuthService.hasValidAccessToken() it returns false, as far as I can see AuthGuard of abp is using that method internally, for that reason the routes are not active and I am not able to login even with the token
I am not sure about the real issue since I have tested the token in ThunderClient and the API responds correctly to it.
Hello, I created a custom layout for my application using this example https://docs.abp.io/en/commercial/latest/themes/lepton-x/how-to-use-lepton-x-components-with-angular-custom-layout Even thought I have noticed, the PerfectScrollBar is not working at all, I have tried the directive lpxPerfectScrollbar and [perfectScrollbar] but both are not working
Am I missing configuration? Any idea?
Hello I have been trying to implement SAML authentication in my app, I have created a controller in the Auth Server which is going to do the redirect to an Azure App with SAML Auth enabled.
For now the Angular app redirects to account/login (plus the parameter of ReturnUrl) when the user is not logged in, this is something I would like to change, I would like to redirect to a custom URL of the Auth server, I do not want to remove the OpenId login since there are some users that are going to log in through that login and some others are login through SAML, the goal is to redirect to the custom URL by default when the user is not logged in, and show the login page of Abp only when the user writes the URL in the browser.
I have configured oAuthConfig ResponseType = token
In summary what I was looking for is to change the default url (in the frontend project) account/loginby something like auth/login, from my understanding the Account module from Abp relies on the accountroute to redirect when the user is not logged in, in the end this is what I had to do, to overcome my requirenments
account/login to show a custom component which is going to redirect to a SAML Login Appaccount/admin to allow the admin the ability to login using the default login (the one with openId)This is correctly working, but I am concerned about the double load of Account module, is there another way to do the same?
Hello,
Based on your replies, definitely there is no way to change account/login URL, for now, I will go with my solution, since the complement replacement doesn't fit my requirement, thanks for the support, I will close the ticket.
ABP Framework version: v8.2.1
UI Type: Angular
Database System: EF Core (SQL Server)
Tiered (for MVC) or Auth Server Separated (for Angular): no
Exception message and full stack trace: Microsoft.AspNetCore.Authentication.AuthenticationFailureException: An error was encountered while handling the remote login. ---> Microsoft.AspNetCore.Authentication.AuthenticationFailureException: Unable to unprotect the message.State. --- End of inner exception stack trace ---
Steps to reproduce the issue:
Hello, I've followed this article How to Setup Azure Active Directory and Integrate ABP Angular Application
in order to integrate Azure AD as IDP in my application, after successfully login with my Microsoft account I got the error
I haven't been able to figure out what is the reason of the error, this is the configuration that I have in appsettings
This is the code in the method ConfigureAuthentication in ApiHostModule file
This is what I have in the frontend side
Azure has been configured as well
Do you have an idea of what is going on? I am not sure if this is related to ABP configuration, Thanks for your time!
