Is there any estimation for the release date?
1 - Create new project: abp new Demo -t microservice-pro -u blazor 2 - go to (solution_root)/etc/docker 3 - run .\up1.sh 4 - go to (solution_root)/shared/Demo.DbMigrator 5- run: dotnet run --environment "Development" 6- open sql management studio, configure connection; Server=localhost,1434, User Id=sa, password=myPassw0rd 7- open Demo_Identity/OpenIddictApplications table 8- check for the value in Persmissions column of clientId=Demo_Blazor row. Here is the initial value; ["ept:logout","gt:authorization_code","rst:code","ept:authorization","ept:token","ept:revocation","ept:introspection","scp:address","scp:email","scp:phone","scp:profile","scp:roles","scp:AccountService","scp:IdentityService","scp:AdministrationService","scp:SaasService","scp:ProductService"] 9- go to solution root folder 10- run solution: .\run-tye.ps1 (note: first run sometimes fails, so I kill the process and run it again when working on a brand-new project) 11- open blazor site: https://localhost:44307/ 12- login: admin 1q2w3E* 13- go to /administration/openid/applications tab 14- edit Demo_Blazor application 15- click save button without changing any data. 16- follow the steps 6,7,8 and check for the persmissions data on the table. 17- built-in scopes are gone; ["ept:logout","gt:authorization_code","rst:code","ept:authorization","ept:token","ept:revocation","ept:introspection","scp:ProductService","scp:SaasService","scp:AdministrationService","scp:IdentityService","scp:AccountService"] 18- scp:address","scp:email","scp:phone","scp:profile","scp:roles are missing after update. 19- if you logout from blazor app, you cant login back because of the missing data. here is the error message you get when you try to login back; error:invalid_request error_description:This client application is not allowed to use the specified scope. error_uri:https://documentation.openiddict.com/errors/ID2051
Can you help me for this issue?
Thanks.
Thanks, once more. You saved the day again.
DemoApplicationClient is created using blazor app UI and client_credentials,refresh_token,password flow options checked.
var client = new RestClient("https://localhost:44322/connect/token"); client.Timeout = -1; var request = new RestRequest(Method.POST); request.AddHeader("Content-Type", "application/x-www-form-urlencoded"); request.AddParameter("client_id", "DemoApplicationClient"); request.AddParameter("client_secret", "1q2w3e*"); request.AddParameter("grant_type", "password"); request.AddParameter("username", "admin"); request.AddParameter("password", "1q2w3E*"); request.AddParameter("scope", "ProductService"); IRestResponse response = client.Execute(request); Console.WriteLine(response.Content);
Hi. I used to get access_token and refresh_token during password flow of identityserver4. I migrated app to use openiddict and defined an openiddict application(client) with password and resresh_token flows enabled.
When I try the password flow using the related application(client) and admin user, I get only access_token. Refresh token is missing.
Can you help me for that?
Thanks.
It works as expected on password flow.
I could not test it on refresh_token flow. I will open another ticket for that issue.
Thank for your support.
Hi,
I think the document is not about adding new claims to the token. It is about switching the destination of an already added claim. It helps to decide where the claim exists (idtoken or accesstoken).
The claims property of the context is a readonly array and can not be altered. Using this class, I can not add a new claim to the context but I can alter it is destination.
I need to add new claims to the context, not to alter their locations.
Thanks
Hi, there was a class named DefaultTokenService of IdentityServer4. After switching to OpendIddict, the class is missing. I used to override that class in AuthServer project and add some dynamic claims to token.
Can you suggest me a new way for the missing class?
Thanks.