Error with EntraID Authentication

PORTLAND · April 2, 2025, 7:22pm

I'm developing an application and I want to have it integrated with our Azure users.
When I test the app in dev, it logs in without any Issue, but when the app is deployed to a server, it show a few errors after authentication is done in the Microsoft website.
In the console, the following messages are shown:

info: System.Net.Http.HttpClient.Requisitions.LogicalHandler[100]
Start processing HTTP request POST https://192.168.3.219:8087/Account/CurrentUser
info: System.Net.Http.HttpClient.Requisitions.ClientHandler[100]
Sending HTTP request POST https://192.168.3.219:8087/Account/CurrentUser
info: Microsoft.IdentityModel.LoggingExtensions.IdentityLoggerAdapter[0]
IDX10242: Security token: '[PII of type 'Microsoft.IdentityModel.JsonWebTokens.JsonWebToken' is hidden. For more details, see Search - Microsoft Bing]' has a valid signature.
info: Microsoft.IdentityModel.LoggingExtensions.IdentityLoggerAdapter[0]
IDX10239: Lifetime of the token is valid.
info: Microsoft.IdentityModel.LoggingExtensions.IdentityLoggerAdapter[0]
IDX10234: Audience Validated.Audience: '5f22beba-3093-4b10-b926-052cfa3770d9'
info: Microsoft.IdentityModel.LoggingExtensions.IdentityLoggerAdapter[0]
IDX10245: Creating claims identity from the validated token: '[PII of type 'Microsoft.IdentityModel.JsonWebTokens.JsonWebToken' is hidden. For more details, see Search - Microsoft Bing]'.
info: Microsoft.IdentityModel.LoggingExtensions.IdentityLoggerAdapter[0]
IDX21305: OpenIdConnectProtocolValidationContext.ProtocolMessage.Code is null, there is no 'code' in the OpenIdConnect Response to validate.
info: Microsoft.IdentityModel.LoggingExtensions.IdentityLoggerAdapter[0]
IDX21310: OpenIdConnectProtocolValidationContext.ProtocolMessage.AccessToken is null, there is no 'token' in the OpenIdConnect Response to validate.

What else do I need to do to make it work?
Any suggestions?

korchev · April 3, 2025, 4:08am

Hi @PORTLAND,

Those seem to be info messages. Why do you think those are errors? Is there anything else which is not working? You should make sure your deployed application URL is correctly included as a redirect URI in your app's configuration in the azure portal. Check here for more details: Azure AD | Radzen Blazor Studio

PORTLAND · April 7, 2025, 6:38pm

Yes, I made the configurations stated in the link you shared. When I run the app in dev it works, but in production it won't pass the Login Screen.
Anyways, I need to switch back to make it work with ASP.NET Core Identity, anything special to do in order to revert from Azure AD and start using Core Identity?

PORTLAND · April 9, 2025, 8:11pm

If I need to switch back to ASP.NET Core Identity, anything special to do?

korchev · April 10, 2025, 5:07am

You would need to delete the related code from Program.cs. Everything else should be overwritten when you enable ASP.NET Core Identity. That code should look something like this:

builder.Services.AddAuthentication(OpenIdConnectDefaults.AuthenticationScheme)
        .AddMicrosoftIdentityWebApp(Configuration.GetSection("AzureAd"));

PORTLAND · April 10, 2025, 9:03pm

Thank you. It didn't work, but as I was just starting to customize it, I just had to recreate it.