Closed albertly closed 4 years ago
This is an ASP.NET Core concern - not really IdentityServer.
But have a look at this project here, which I think does what you want https://github.com/IdentityModel/IdentityModel.AspNetCore
I just need to know when MVC client decides to redirect to login. And it's true it is not pure concern of IS, but I think it's rather common scenario. There are a lot of samples how to do it with API access - get 401, go renew access_token. But how to do it in MVC client. I just need help.
I've found the solution here https://github.com/leastprivilege/AspNetCoreSecuritySamples/tree/aspnetcore21/AutomaticTokenManagement
This thread has been automatically locked since there has not been any recent activity after it was closed. Please open a new issue for related bugs.
This thread has been automatically locked since there has not been any recent activity after it was closed. Please open a new issue for related bugs.
I code “MVC Client” just as in “Creating an MVC client” https://identityserver4.readthedocs.io/en/latest/quickstarts/2_interactive_aspnetcore.html#creating-an-mvc-client My main goal is when access_token is expired to get new one with refresh_token. I need it not for API access but for “MVC Client” authentication/authorization.
So, I thought before “MVC Client” issues redirect to IdentityServer to its login page (http://localhost:5000/connect/authorize?client_id=mvc&redirect_uri=bla, bla, bla) just intercept it and send instead of it just get new access_token (with refresh_token) w/o user need to enter his credentials.
So, I just need to get any event before “MVC Client” decides that access_token no longer valid and tries to redirect to IdentityServer login.
Minimal working example
On every line with "return f3(context);" I put break point with anticipation to hit it before getting to Login page of IdentityServer – no luck .
This is client config.
Question
How to do it - refresh token automatically w/o user interaction for MVC Client authentication (not for API access)