ComponentSpace

Forums



[Authorize] attribute does not populate RedirectUri in challenge's authenticationProperties


[Authorize] attribute does not populate RedirectUri in challenge's...

Author
Message
leo_eoc
leo_eoc
New Member
New Member (3 reputation)New Member (3 reputation)New Member (3 reputation)New Member (3 reputation)New Member (3 reputation)New Member (3 reputation)New Member (3 reputation)New Member (3 reputation)New Member (3 reputation)

Group: Forum Members
Posts: 2, Visits: 16
I'm trying to get saml middleware to work with basic cookie authentication (not AddDefaultIdentity() as in the middleware sample)
The saml flow completes OK, and the cookie auth scheme signs in succesfully. So far so good.

However, when triggering a challenge using the [Authorize] attribute on a controller action, the final redirect back to that same controller action does not happen.
In the debug log I see that the saml middleware HandleChallengeAsync() method did not receive a redirect uri as part of the authenticationProperties parameter.
Also the relayState parameter of the LoginCompletionUrl() callback is null.

What am I doing wrong here?


I'm using .NET Core 2.1 and ComponentSpace.Saml 3.7.0
excerpt of Startup.cs:

   services.AddAuthentication(options =>
    {
      options.DefaultScheme = CookieAuthenticationDefaults.AuthenticationScheme;
    })
    .AddCookie(options =>
    {
      options.ForwardChallenge = SamlAuthenticationDefaults.AuthenticationScheme;
    })
    .AddSaml(options =>
      {
       options.PartnerName = (httpContext) => Configuration["PartnerName"];
       options.AssertionConsumerServicePath = "/saml2/acs";
       options.LoginCompletionUrl = (context, relayState) =>
       {
        return relayState;
       };
       options.SignInScheme = CookieAuthenticationDefaults.AuthenticationScheme;
      });


Excerpt of controller action:

 [Authorize(AuthenticationSchemes = CookieAuthenticationDefaults.AuthenticationScheme)]
    public async Task<IActionResult> TestMethod()
   {
   }

thanks in advance for any help!
ComponentSpace
ComponentSpace
ComponentSpace Development
ComponentSpace Development (4.4K reputation)ComponentSpace Development (4.4K reputation)ComponentSpace Development (4.4K reputation)ComponentSpace Development (4.4K reputation)ComponentSpace Development (4.4K reputation)ComponentSpace Development (4.4K reputation)ComponentSpace Development (4.4K reputation)ComponentSpace Development (4.4K reputation)ComponentSpace Development (4.4K reputation)

Group: Administrators
Posts: 3.2K, Visits: 11K
The LoginCompletionUrl delegate should return the URL to redirect to once SSO completes. For example, this could be the URL of your controller.

The SAML authentication handler returns control to the AuthenticationProperties.RedirectUri specified at the time of the challenge.

If none is specified, it calls the LoginCompletionUrl delegate and uses the returned URL.

If there's no LoginCompletionUrl delegate, it defaults to the SamlAuthenticationDefaults.LoginCompletionUrl (ie /Identity/Account/ExternalLogin?handler=Callback).

If there's still an issue, please send the SAML log file as an email attachment to [email protected] mentioning your forum post.

Regards
ComponentSpace Development
leo_eoc
leo_eoc
New Member
New Member (3 reputation)New Member (3 reputation)New Member (3 reputation)New Member (3 reputation)New Member (3 reputation)New Member (3 reputation)New Member (3 reputation)New Member (3 reputation)New Member (3 reputation)

Group: Forum Members
Posts: 2, Visits: 16
Fyi: this issue was solved  in ComponentSpace.Saml 3.7.1
with the kind help from ComponentSpace support staff



ComponentSpace
ComponentSpace
ComponentSpace Development
ComponentSpace Development (4.4K reputation)ComponentSpace Development (4.4K reputation)ComponentSpace Development (4.4K reputation)ComponentSpace Development (4.4K reputation)ComponentSpace Development (4.4K reputation)ComponentSpace Development (4.4K reputation)ComponentSpace Development (4.4K reputation)ComponentSpace Development (4.4K reputation)ComponentSpace Development (4.4K reputation)

Group: Administrators
Posts: 3.2K, Visits: 11K
Thank you for your kind words.

Regards
ComponentSpace Development
GO


Similar Topics


Execution: 0.000. 1 query. Compression Enabled.
Login
Existing Account
Email Address:


Password:


Select a Forum....












Forums, Documentation & Knowledge Base - ComponentSpace


Search