I am new to Auth0 and I thought I start by downloading the seed project to examine it. I am using .NET Core. I downloaded the project, but when I ran it I get an error:
SecurityTokenInvalidSignatureException: IDX10503: Signature validation failed. Keys tried:...
This happened after I tried logging in and during the execution of the callback (http://localhost:5000/signin-auth0)
Does anyone have an idea what could be the problem?
Thanks
I received a response from the Auth0 forum (thank you Nicolas Sabena)that solved the problem:
The .Net Core seed projects are meant to work with the RS256 algorithm by default.
To change the algorithm, go to Clients | {Your client} | Settings, then click on the Show advanced settings link, and select the OAuth tab. In the JsonWebToken Signature Algorithm dropdown, select RS256.
After switching to RS256, everything worked.
Related
I have a blazor application. It is authenticated using Azure AD B2C. The sign in user flow is set to Require ID Token in logout requests. When the user is trying to log out, the following error is received:
Sorry, but we're having trouble signing you in.
...
The id_token_hint parameter has not been specified in the request.
Please provide token and try again.
I know that I need to pass id_token_hint as a query parameter, but can't find how exactly this can be done.
Have a look at this and this.
In both cases, the code to build the magic link is included.
Blazor does not currently send the id_token_hint. MS have been aware since .Net 5, but are yet to fix it. There's signs it could be fixed in .Net 8.
https://github.com/dotnet/aspnetcore/issues/29586
I have tried to make custom policies. then I used custom policy starter pack from https://github.com/Azure-Samples/active-directory-b2c-custom-policy-starterpack.git
First I registered new user, then I tried sign In process but it doesn't work.
Error message says "The username or password provided in the request are invalid"
Do you have any solution of this?
*I registered B2C_1A_TokenSigningKeyContainer and B2C_1A_TokenEncryptionKeyContainer.
*And I replaced each keys particular place on SignUpOrSignin.xml(followed the guidance from microsoft web page )
One of the common causes of this issue is the misconfiguration of application IDs of IdentityExperienceFramework and ProxyIdentityExperienceFramework.
Check out this to make sure the configuration is correct.
Trying to customize Portfolio Item Burnup , got source code from https://github.com/RallyApps/app-catalog/tree/master/src/apps/charts/rpm/burn
Now after compiling using "rally-app-builder build" command and after that running with "rally-app-builder run" command, I am able to run the page. In another tab of chrome, Rally is logged in. the launched page is getting authentication from rally session and able to get some data like searching some PFG/PF etc.
Now problem is after applying some settings and selecting some PF/PFG, its again demands authentication (for rally1.rallydev.com/slm/webservice/v2.0/security/authorize). This authentication is not working with my credential.
I have also generated some api key from rally1.rallydev.com/login/accounts/index.html#/keys ,but, that also not working.
Pls help on this.
Thanks,
Udayan
I'm assuming you use SSO to login? If so, you won't be able to correctly authenticate against that /security/authorize endpoint (which is used for generating a CSRF token when making POST/PUT/DELETE calls against wsapi- GETS are fine).
You were on the right track with the api key. Generate a key and then just add it to the query string of your app url:
http://localhost:1337/App-debug.html?apiKey=83h3lkb4b43302bfvlav
There's also a guide in the App SDK docs that describes this in greater detail: https://help.rallydev.com/apps/2.1/doc/#!/guide/embedding_apps
Whenever I run the Podio ASP.NET Sample Application, it displays me the 'Authentication' page asking for either my Podio credentials or to choose the "Server side flow" with "Sign in to Podio"-button. However, once I try to authenticate with either method, Visual Studio prompts me with a "SqlException was unhandled by user code - An exception of type 'System.Data.SqlClient.SqlException' occurred in NPoco.dll but was not handled in user code" warning (image), referring to line 20 on PodioOAuthData.cs. I've followed the instructions on the GitHub readme page but I can't get it to work. Any idea if I'm missing something?
It seems the readme is a little light on details when it comes to an out-of-the-box experience.
You actually need a running SQL server somewhere. And then edit PodioAspNetSample/Web.config (https://github.com/podio/asp-net-sample/blob/master/PodioAspNetSample/Web.config#L22) to contain the right connection string.
Good luck.
I can't get the sample External Authentication Services with Web API(C#) to work with Google. I created a project by following the instructions. However, I noticed that my project created a slightly different code in Startup.ConfigureAuth() method.
app.UseGoogleAuthentication(new GoogleOAuth2AuthenticationOptions()
{
ClientId = "<valid client id here>",
ClientSecret = "<valid secret here>",
});
The code in the sample does not have the initialization part but without it the code will not even compile.
When I run the app I get the option on the Log In screen to use Google as a service to log in. I'm then taken to Google's site and asked to allow my app to use my info. The app's name appears to be correct so I have to assume that ClientId/ClientSecret provided above are correct. However, when I click "Allow" button I'm taken back to the Log In page instead of the Register page as illustrated in the example.Has anyone managed to make the sample work with Google authentication? If yes, could you please share workarounds, if any.Thanks.
I finally found the source of the problem with a help of a post on this site. Unfortunately I lost the link to the post. Anyway, the solution is to make sure that Google+ APIs are enabled in Google Console for the project - they are not enabled by default. The details can be found here (as suggested by the post).