Closed keggster101020 closed 3 years ago
As an aside to your problem, with Safari adding more privacy protection, and Chrome and Edge following, it's likely frame based logins aren't going to work for much longer,
For AAD login you may want to consider moving to Identity.Web which is the new Azure library, and is what .NET 5 uses (and we'll be updating the templates for 3.1 in Feb to use)
Closing this issue as it is an issue with the identity server and not the framework .
Identity server bug: https://github.com/AzureAD/microsoft-identity-web/issues/778
Hi,
I'm trying to do silent auth/refresh for users on my web page by having a hidden iframe call a SignIn api on my server. I'm using AADv2 for the auth server and whenever authentication can be refreshed successfully everything works as expected.
However, when there is an error in the silent auth flow (e.g.: interaction_required errors) something is issuing a redirect to /signin-oidc in the parent window. That is, the redirect is breaking out of the iframe; which is obviously undesired behavior.
I've been able to reproduce this issue with a brand new ASP NET CORE project so I can rule out something in my services code that is causing the issue.
Any help would be appreciated. Thanks
Expected Behavior
The iframe returns the challenge call and then either redirects to
/index
with authenticated user state or the iframe redirects to/error
if the silent challenge fails on the auth serverActual Behavior
When the silent login call fails, the parent window is redirected to
/singin-oidc
with an error message. Not the iframeAuth Setup
Startup.cs
Auth Controller
IFrame Setup
Project:
ASP.NET Core v3.1
Nuget Packages: