Closed hasmyr closed 5 years ago
My .well-known/openid-connect settings for my page all have addresses that start with http. However, my website on AWS redirects all http requests to https. Could this be causing an issue with the middleware?
Did you solve it? I have the same problem
Yes, I set the PublicOrigin to the https address, this prevented the redirect in AWS and solved the issue.
It worked. Thank you very much. I was fighting with this two days ago.
I add this code in my Identity Server, but I have the same problem.
services.AddIdentityServer(options =>
{
options.PublicOrigin = "https://xx.xx.com";
options.Events.RaiseErrorEvents = true;
options.Events.RaiseFailureEvents = true;
options.Events.RaiseInformationEvents = true;
options.Events.RaiseSuccessEvents = true;
})
Do I have to make another change in my client?
This thread has been automatically locked since there has not been any recent activity after it was closed. Please open a new issue for related bugs.
I am having an issue when redirecting to signin-oidc after the consent page. Locally I have no issues I can Login -> Consent -> signin-oidc -> redirected to landing page no problem with all cookies updated properly.
However, when the server is deployed in AWS Fargate it does not work. I am not sure if this is middleware related or IS4 related, but I can connect to the test IS4 server https://demo.identityserver.io/ without issue.
I am using the same Config and TestUsers with InMemory settings from https://github.com/IdentityServer/IdentityServer4.Demo.
Here is the startup on my IS4 server:
And the startup from my test client website, which I have deployed to Azure along with localhost testing:
These two systems work fine locally, but when deployed I get the error:
The only difference I can see is locally it is redirecting to signin-oidc with Type : x-www-form-urlencoded, which works properly.
But on the depolyed IS4 server it redirects with Type : document and gets a 500 error. But the headers still have all of the information I need, but signin-oidc does not accept the form and fails. I am looking into having my own signin-oidc endpoint instead of using the middleware but I want this to be easily adaptable for my clients to use my IS4 server.
Any help would be much appreciated as I have been struggling with this for a couple days.