hi
https://github.com/maliming/NextGenPortal/invitations
Also do we need to set same credentials for Host and Tenant?
You can set different azure openid configuration for Host and Tenant
hi
I can log in successfully by microsoft in host and tenant with the below configuration
Authority : https://login.microsoftonline.com/b9eb6473-28b2-46c1-9f80-c90c9298253b
ClientId : aa3735b8-1b81-43b4-a38c-7b454ae4bb87
ClientSecret : wvG8Q~le8BW0EX-FdHsaGtUQ7ZHPxJBkMdAgva9s
What is your GitHub username? I will invite you to test the project repos.
https://github.com/maliming/NextGenPortal
The /Gdpr/PersonalData page.
Total: 9.21s
Do you know which page doesn't make many API calls?
hi
I have the NextGenPortal project.
Please share two configurations for the External provider. Host and tenant
Thanks.
hi
Can you share your test project?
liming.ma@volosoft.com
I will download and check it. Thanks.
If you can reproduce it, please share all HTTP request info recorded by Chrome.
Thanks.
Also set public bool ValidateAudience { get; set; } to false
hi
As far as I can see, the API requests take most of the time to initial the page. Total: 9.44s
hi
I can not do the hardcode values as we have dynamic parameters.
The OpenIdConnectOptions option is IOptionsMonitor<OpenIdConnectOptions>
You can add a custom implementation to get value from the database. Read the value of the tenant.
or you can set TokenValidationParameters.ValidateIssuer to false
https://learn.microsoft.com/en-us/dotnet/api/microsoft.identitymodel.tokens.tokenvalidationparameters.validateissuer?view=msal-web-dotnet-latest
hi
If you changed the Authority You can use a wildcard domain as Issuer
{0} can be any tenant name.
https://github.com/abpframework/abp-samples/blob/f46dabd078361ebb564708cce28fe8a8b7a60494/DomainTenantResolver/OpenIddict/MVC-TIERED/src/Acme.BookStore.Web/BookStoreWebModule.cs#L179-L184
https://github.com/maliming//Owl.TokenWildcardIssuerValidator
