HOW TO AUTHENTICATE EXERNAL SSO TOKEN WITH ADMIN APIS #5427 | Support Center | ABP Commercial

shijo created 9 months ago

ABP Framework version: v7.3.0
UI type: Angular
DB provider: EF Core
Tiered (MVC) or Auth Server Separated (Angular): yes
Exception message and stack trace:
Steps to reproduce the issue:"
1. Client Application/Mobile app getting authorized and obtained token from External SSO Application
2. API call initiated with the tenant and generated token
How to configure extra authentication to validate this external token in abp api application ? Here is the sample flow diagram.

37 Answer(s)

0

shijo created 10 months ago

TestApp.HttpApi.Host

All APIs are in TestApp.HttpApi.Host, how to access API by external user? Strange thing is when I placed [Authorize(AuthenticationSchemes = "Bearer,jwt2")] in controller attribute api returning data and same thing when I placed in Service not working
0
shijo created 10 months ago
Hi, Nothing is working out.

See I want to switch users based on token claim data emailid, before calling the APIs, I think now that's user switching is not happening, and thats why API authorization is failing.

When I am calling API, lifecycle is somethings like this

https://localhost:44316/api/app/authors >>>

AuthorsAppService constructor

AuthorController constructor

Task<PagedResultDto<AuthorDto>> GetListAsync(GetAuthorsInput input) in AuthorController

TokenValidated(TokenValidatedContext context) in JWTToken validator

Inside here I am trying to switch user but not working

Response 401 UnAuthorized ** service (AuthorsAppService) layer method not calling at all
0

maliming created 10 months ago
Support Team Fullstack Developer

hi

I can check it remotely. My time zone is utc+8.
0

shijo created 10 months ago

hi

I can check it remotely. My time zone is utc+8.

I have teamviewer, can you access ?? Let me know your convenient time, I am available any time.
0

shijo created 9 months ago

Hi, Can you update me on this, the task is bit urgent
0

maliming created 9 months ago
Support Team Fullstack Developer

hi

I can check it remotely tomorrow.

UTC+8 9:00-12:00 13:00-18:00

You can email me liming.ma@volosoft.com
0

maliming created 9 months ago
Support Team Fullstack Developer

hi

You can keep testing it and give feedback here.
0

shijo created 9 months ago

hi

You can keep testing it and give feedback here.

Working fine, I mapped the role in admin to give permission to access the APIs.

One more question, Is that a good approach to check user availability from db on the token-validated event?

maliming created 9 months ago

Support Team Fullstack Developer

You can add your code to:

app.Use(async (ctx, next) =>
{
    if (ctx.User.Identity?.IsAuthenticated != true)
    {
        var result = await ctx.AuthenticateAsync("jwt2");
        if (result.Succeeded && result.Principal != null)
        {
            // add your logic
            ctx.User = result.Principal;
            // add your logic

        }
    }

    await next();
});

shijo created 9 months ago

You can add your code to:

app.Use(async (ctx, next) => 
{ 
    if (ctx.User.Identity?.IsAuthenticated != true) 
    { 
        var result = await ctx.AuthenticateAsync("jwt2"); 
        if (result.Succeeded && result.Principal != null) 
        { 
            // add your logic 
            ctx.User = result.Principal; 
            // add your logic 
 
        } 
    } 
 
    await next(); 
});

Production environment _currentTenant is null inside TokenValidated method, locally I am getting the value what could be the reason?

0

maliming created 9 months ago
Support Team Fullstack Developer

hi

Maybe the cookies are different in local and production.

https://docs.abp.io/en/abp/latest/Multi-Tenancy#default-tenant-resolvers
0

shijo created 9 months ago

Issue solved, Thanks for your support

1

Showing 26 to 50 of 37 entries.

Previous
1
2 (current)
Next

Have an answer to this question? Log in and write your answer.