-
Notifications
You must be signed in to change notification settings - Fork 317
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Redirecting back to client application after logging out from the external identity provider #1404
Comments
Thanks for opening this issue. We'll take a look soon! |
This should work from our quickstart samples. Have you tested those? Or have you finally sorted out the issue? |
I have tested it out. The quickstart project which is configured with asp.net identity doesn't work as expected. Link to the specific quickstart When I use quickstart linked above, and configure dynamic providers for it (for example using duende's demo identity server as dynamic provider) user is not redirected from external provider back to identity server and back to the client application. The reason for not being redirected is the absence of The reason of absent When configuring asp.net identity Solution provided by me suggests one of the method for fixing this issue, with setting |
Thanks again for this bug report @ivan-sedlak-visma. I've now managed to reproduce this problem and we're reviewing your PR. In the short term, I believe you can work around this issue with configuration like this:
But we do agree that it would be better if the two features understood each other and no manual configuration was necessary. |
This was resolved in #1265 |
Identity server version 6.2.3
.NET version 6.0
Redirecting back to client application after logging out from the external identity provider
User is not redirected back to the client application from external identity provider, when identity server is configured for asp.net identity.
For example, if we use one of the quickstart projects from duende samples and add oidc identity provider (we can use one of the clients from https://demo.duendesoftware.com/) we will be able to login through the identity provider successfully, but when we try to logout, process will go through logout to the identity provider and will not redirect back to the identity server and to the client application.
To Reproduce
.AddAspNetIdentity<ApplicationUser>()
)..AddInMemoryOidcProviders
).Expected behavior
User is logged out from client application, identity server and external identity provider, after which user is redirected back to client application.
Actual behavior
User is not redirected back to the client application.
Solution
Link to PR
After some debugging of the duende and Microsoft sources, I've discovered that the reason for the redirection problem is the absence of id token. SignOutScheme which is used to retrieve id token from the user is set to default value, but default authentication scheme after configuring identity server for asp.net identity is changed to Identity.Application.
The text was updated successfully, but these errors were encountered: