Hello,
sorry for this delay, I was on vacation.
It seems you are right, google ODIC does not provide the "email" claim.
The thing I want to achieve is to validate our application does work as OpenId Client. So I can try to make it work using another OIDC server than Google.
Have you got one public site with which it works ? Somethin I can tell my clients "look, OIDC does work in our application, you can check against this provider" ?
Here is what I tried :
Hi @ismcagdas,
thanks for your reply.
We used the officiel Google documentation here : https://developers.google.com/identity/protocols/oauth2/openid-connect
which states we should use this discovery info to extract issuer / auth urls : https://accounts.google.com/.well-known/openid-configuration
These are the urls we used to configure our application (- "issuer" and "authorization_endpoint" properties in the discovery document), which do match, by the way, the default ones as described in their doc, and all the samples I saw on internet.
I tried with the very same settings on a different PC with the same code branch (but another database) and it throws "System.InvalidOperationException: Sequence contains no matching element" at Abp.AspNetZeroCore.Web.Authentication.External.OpenIdConnect.OpenIdConnectAuthProviderApi.GetUserInfo(String token)
Ok I see.
Thanks for having pointed me in the right direction.
I can close this ticket I think.
@ismcagdas ok ; any tip on how to do that the clean way ?
Ok... but we do not use Redis, and we don't plan to enable it just for that bug.
Another suggestion maybe ?
Thanks Simon for this feedback.
From our side it's still not resolved. I don't know if the aspnetzero team has found something.
Maybe your comment will help them to reproduce ?
Hello,
any clue on this ?
We are about to deliver our application to clients next week. We really need this to work as expected...
Maybe this issue is related ? https://support.aspnetzero.com/QA/Questions/9073/Issue-with-retrieving-Permissions-tenant-specific-permissions-from-the-database-for-a-given-tenant
My existing app, the part "i just downloaded it" refers to Firefox, to say that the browser was not corrupted with any cookie / cache stuff
I can add one info : it's definitively related to the bckend (no cookie or local storage problem) :
Hello,
have you received my email ?
Just to inform you, I've just encountered the problem and the application was started 2 minutes before, so it's not a matter of long time etc. I started the application, navigated to it ; I was already logged in as an impersonated tenant user ; immediately "switch back to my account" to the host admin and the permissions for some pages like Tenants were not there. Then I stopped the application in IIS, restarted it, went back to my browser, F5 : the "tenants" menu appeared.
