[Archived] ASP.NET Core Identity is the membership system for building ASP.NET Core web applications, including membership, login, and user data. Project moved to https://github.com/aspnet/AspNetCore
Apache License 2.0
1.97k
stars
871
forks
source link
OpenID Connect - Sign Out - AADSTS90015: Requested query string is too long. #2010
This allows me to get an access token for Azure Service Management in my controller like so:
var accessToken = await httpContext.GetTokenAsync("access_token");
I am using this sample: https://github.com/Azure-Samples/active-directory-dotnet-webapp-openidconnect-aspnetcore
I made 1 modification in the code - added
SaveTokens
flag:I also made another modification in the AAD app manifest:
"groupMembershipClaims": "SecurityGroup",
This gives me a longer ID token with group claims as I need them, but when I try to sign out, I get this:![image](https://user-images.githubusercontent.com/4509839/46902540-1fa85100-cebf-11e8-82b2-c9f3f8c8a419.png)
Message: AADSTS90015: Requested query string is too long.
The signout URL is:
The
id_token_hint
is very long. Is it required, or can it be omittted somehow?What I'm trying to do ultimately:
To that end, I modified my app code and manifest even further from the sample:
App manifest additions:![image](https://user-images.githubusercontent.com/4509839/46902696-51221c00-cec1-11e8-8734-ae7a57a9b7f8.png)
"oauth2AllowImplicitFlow": true,
This allows me to get an access token for Azure Service Management in my controller like so:
var accessToken = await httpContext.GetTokenAsync("access_token");