Activities of "Rajasekhar"

• ABP Framework version: v7.0.0
• UI type: MVC
• DB provider: EF Core
• Tiered (MVC): yes
• Exception message and stack trace:
• Steps to reproduce the issue:"

How to enable openiddict for multitenant.

I have replaced the source code instated of nugget package (openiddict). and modified the all entities for multitenant and permissions also changed to display the openiddict in tenant level menu Later I have created the one client application at tenant level.

While redirecting the my client application to openididct solutions it's showing error like, invalid client id. I am suspecting tenant not resolving at opendidict level. please help me in this part

• ABP Framework version: v6.0.1
• UI type: MVC
• DB provider: EF Core
• Tiered (MVC): yes
• Exception message and stack trace:

Volo.Abp.Account.Web.Pages.Account.OpenIddictImpersonateInferEndpointType.
2022-12-13 17:15:13.140 +05:30 [DBG] The event OpenIddict.Server.OpenIddictServerEvents+ProcessRequestContext was successfully processed by OpenIddict.Server.AspNetCore.OpenIddictServerAspNetCoreHandlers+ValidateTransportSecurityRequirement.
2022-12-13 17:15:13.140 +05:30 [DBG] The event OpenIddict.Server.OpenIddictServerEvents+ProcessRequestContext was successfully processed by OpenIddict.Server.AspNetCore.OpenIddictServerAspNetCoreHandlers+InferIssuerFromHost.
2022-12-13 17:15:13.153 +05:30 [DBG] The event OpenIddict.Server.OpenIddictServerEvents+ExtractAuthorizationRequestContext was successfully processed by OpenIddict.Server.AspNetCore.OpenIddictServerAspNetCoreHandlers+ExtractGetOrPostRequest`1[[OpenIddict.Server.OpenIddictServerEvents+ExtractAuthorizationRequestContext, OpenIddict.Server, Version=3.1.1.0, Culture=neutral, PublicKeyToken=35a561290d20de2f]].
2022-12-13 17:15:13.163 +05:30 [INF] The authorization request was successfully extracted: {
  "client_id": "ebanking",
  "redirect_uri": "https://ebanking.xsensezts.com/signin-oidc",
  "response_type": "id_token",
  "scope": "openid profile email",
  "response_mode": "form_post",
  "nonce": "638065287126174151.YWQ4YzI4MjctMzJlNi00NmU4LWI0ZjItYTllZTM0OTQ4YTk5Y2MyYTBmOWMtOTJkNi00YjMwLWEyMjYtNTE5MmJmZTRiMDli",
  "state": "CfDJ8GVn3n20M4pPqPiTCBxGyi_m4NXO6ok-Tpms3xR3H45wNjXm_OZlvyW9qXDV_9YMR8hmqwc7wiLcG4GMimIs8M8UO1i9ulxr595Lwp__hr5r-ALBLOsgUJdEgJqOcIOueMm3uFsOaec4BRqRx-6bRYIKBwURhi6zQJ7XJ7a0FGiZG1XIXrLoq-KV0fZnTay2snjiCdj9Ef2iYPItqGT5H4c0rVfo0kJ66e_1iAmXxqGzBet_HYHpuqNqmvzt1PzPV4mUfLHLySUKCYJtxpvUC6McAKFfLoFvkiOF5lasjudBMZ0_qXvT2uEc-H6S002FVjurlRv8_ZSpbjcWo2z9izAwDtoVnPCn_Qdy3-kBJruf",
  "x-client-SKU": "ID_NETSTANDARD1_4",
  "x-client-ver": "5.2.0.0"
}.
2022-12-13 17:15:13.163 +05:30 [DBG] The event OpenIddict.Server.OpenIddictServerEvents+ProcessRequestContext was successfully processed by OpenIddict.Server.OpenIddictServerHandlers+Authentication+ExtractAuthorizationRequest.
2022-12-13 17:15:13.170 +05:30 [DBG] The event OpenIddict.Server.OpenIddictServerEvents+ValidateAuthorizationRequestContext was successfully processed by OpenIddict.Server.OpenIddictServerHandlers+Authentication+ValidateRequestParameter.
2022-12-13 17:15:13.170 +05:30 [DBG] The event OpenIddict.Server.OpenIddictServerEvents+ValidateAuthorizationRequestContext was successfully processed by OpenIddict.Server.OpenIddictServerHandlers+Authentication+ValidateRequestUriParameter.
2022-12-13 17:15:13.171 +05:30 [DBG] The event OpenIddict.Server.OpenIddictServerEvents+ValidateAuthorizationRequestContext was successfully processed by OpenIddict.Server.OpenIddictServerHandlers+Authentication+ValidateClientIdParameter.
2022-12-13 17:15:13.172 +05:30 [DBG] The event OpenIddict.Server.OpenIddictServerEvents+ValidateAuthorizationRequestContext was successfully processed by OpenIddict.Server.OpenIddictServerHandlers+Authentication+ValidateRedirectUriParameter.
2022-12-13 17:15:13.180 +05:30 [DBG] The event OpenIddict.Server.OpenIddictServerEvents+ValidateAuthorizationRequestContext was successfully processed by OpenIddict.Server.OpenIddictServerHandlers+Authentication+ValidateResponseTypeParameter.
2022-12-13 17:15:13.180 +05:30 [DBG] The event OpenIddict.Server.OpenIddictServerEvents+ValidateAuthorizationRequestContext was successfully processed by OpenIddict.Server.OpenIddictServerHandlers+Authentication+ValidateResponseModeParameter.
2022-12-13 17:15:13.182 +05:30 [DBG] The event OpenIddict.Server.OpenIddictServerEvents+ValidateAuthorizationRequestContext was successfully processed by OpenIddict.Server.OpenIddictServerHandlers+Authentication+ValidateScopeParameter.
2022-12-13 17:15:13.182 +05:30 [DBG] The event OpenIddict.Server.OpenIddictServerEvents+ValidateAuthorizationRequestContext was successfully processed by OpenIddict.Server.OpenIddictServerHandlers+Authentication+ValidateNonceParameter.
2022-12-13 17:15:13.185 +05:30 [DBG] The event OpenIddict.Server.OpenIddictServerEvents+ValidateAuthorizationRequestContext was successfully processed by OpenIddict.Server.OpenIddictServerHandlers+Authentication+ValidatePromptParameter.
2022-12-13 17:15:13.185 +05:30 [DBG] The event OpenIddict.Server.OpenIddictServerEvents+ValidateAuthorizationRequestContext was successfully processed by OpenIddict.Server.OpenIddictServerHandlers+Authentication+ValidateProofKeyForCodeExchangeParameters.
2022-12-13 17:15:13.267 +05:30 [INF] The authorization request was rejected because the client application was not found: 'ebanking'.
2022-12-13 17:15:13.268 +05:30 [DBG] The event OpenIddict.Server.OpenIddictServerEvents+ValidateAuthorizationRequestContext was successfully processed by OpenIddict.Server.OpenIddictServerHandlers+Authentication+ValidateClientId.
2022-12-13 17:15:13.268 +05:30 [DBG] The event OpenIddict.Server.OpenIddictServerEvents+ValidateAuthorizationRequestContext was marked as rejected by OpenIddict.Server.OpenIddictServerHandlers+Authentication+ValidateClientId.
2022-12-13 17:15:13.269 +05:30 [DBG] The event OpenIddict.Server.OpenIddictServerEvents+ProcessRequestContext was successfully processed by OpenIddict.Server.OpenIddictServerHandlers+Authentication+ValidateAuthorizationRequest.
2022-12-13 17:15:13.269 +05:30 [DBG] The event OpenIddict.Server.OpenIddictServerEvents+ProcessRequestContext was marked as rejected by OpenIddict.Server.OpenIddictServerHandlers+Authentication+ValidateAuthorizationRequest.
2022-12-13 17:15:13.277 +05:30 [DBG] The event OpenIddict.Server.OpenIddictServerEvents+ApplyAuthorizationResponseContext was successfully processed by OpenIddict.Server.OpenIddictServerHandlers+Authentication+AttachRedirectUri.
2022-12-13 17:15:13.278 +05:30 [DBG] The event OpenIddict.Server.OpenIddictServerEvents+ApplyAuthorizationResponseContext was successfully processed by OpenIddict.Server.OpenIddictServerHandlers+Authentication+InferResponseMode.
2022-12-13 17:15:13.279 +05:30 [DBG] The event OpenIddict.Server.OpenIddictServerEvents+ApplyAuthorizationResponseContext was successfully processed by OpenIddict.Server.OpenIddictServerHandlers+Authentication+AttachResponseState.
2022-12-13 17:15:13.285 +05:30 [DBG] The event OpenIddict.Server.OpenIddictServerEvents+ApplyAuthorizationResponseContext was successfully processed by OpenIddict.Server.AspNetCore.OpenIddictServerAspNetCoreHandlers+Authentication+ProcessFormPostResponse.
2022-12-13 17:15:13.286 +05:30 [DBG] The event OpenIddict.Server.OpenIddictServerEvents+ApplyAuthorizationResponseContext was successfully processed by OpenIddict.Server.AspNetCore.OpenIddictServerAspNetCoreHandlers+Authentication+ProcessQueryResponse.
2022-12-13 17:15:13.288 +05:30 [DBG] The event OpenIddict.Server.OpenIddictServerEvents+ApplyAuthorizationResponseContext was successfully processed by OpenIddict.Server.AspNetCore.OpenIddictServerAspNetCoreHandlers+Authentication+ProcessFragmentResponse.
2022-12-13 17:15:13.289 +05:30 [DBG] The event OpenIddict.Server.OpenIddictServerEvents+ApplyAuthorizationResponseContext was successfully processed by OpenIddict.Server.AspNetCore.OpenIddictServerAspNetCoreHandlers+AttachHttpResponseCode`1[[OpenIddict.Server.OpenIddictServerEvents+ApplyAuthorizationResponseContext, OpenIddict.Server, Version=3.1.1.0, Culture=neutral, PublicKeyToken=35a561290d20de2f]].
2022-12-13 17:15:13.289 +05:30 [DBG] The event OpenIddict.Server.OpenIddictServerEvents+ApplyAuthorizationResponseContext was successfully processed by OpenIddict.Server.AspNetCore.OpenIddictServerAspNetCoreHandlers+AttachCacheControlHeader`1[[OpenIddict.Server.OpenIddictServerEvents+ApplyAuthorizationResponseContext, OpenIddict.Server, Version=3.1.1.0, Culture=neutral, PublicKeyToken=35a561290d20de2f]].
2022-12-13 17:15:13.290 +05:30 [DBG] The event OpenIddict.Server.OpenIddictServerEvents+ApplyAuthorizationResponseContext was successfully processed by OpenIddict.Server.AspNetCore.OpenIddictServerAspNetCoreHandlers+ProcessStatusCodePagesErrorResponse`1[[OpenIddict.Server.OpenIddictServerEvents+ApplyAuthorizationResponseContext, OpenIddict.Server, Version=3.1.1.0, Culture=neutral, PublicKeyToken=35a561290d20de2f]].
2022-12-13 17:15:13.293 +05:30 [INF] The response was successfully returned as a plain-text document: {
  "error": "invalid_request",
  "error_description": "The specified 'client_id' is invalid.",
  "error_uri": "https://documentation.openiddict.com/errors/ID2052"
}.

• Steps to reproduce the issue:"

1. We have extended openiddict to tenant level
2. Added an application(eg:ebanking.abp.com)to the tenant(eg: public.abp.com)
3. Try sp intiated login and we are getting this message.
4. It is working sometimes but failing most of the times.
5. One observation we found was When we edit openid application settings like consent etc,it is working immediately. but we are getting same issue.

• ABP Framework version: v3.2.0
• UI type: MVC
• DB provider: EF Core
• Tiered (MVC): Yes
• Exception message and stack trace:
• Steps to reproduce the issue:
• 1. Host the application in IIS & open the application URL
• 2. Search for hidden directories eg : https://abpapplication.com/..%2fconsole.portal
• 3. It is showing 403 error, forbidden
• 4. But we want to redirect the error and show as 404.

• ABP Framework version: v5.0.1
• UI type: MVC
• DB provider: EF Core
• Tiered (MVC) or Identity Server Separated (Angular): no
• Exception message and stack trace:
• Steps to reproduce the issue:"

How to add the validation rule for existing properties, I want to add validation attribute to role name is there any extension method you have please let me know

If you're creating a bug/problem report, please include followings:

• ABP Framework version: 5.1.4
• UI type: MVC
• DB provider: EF Core
• Tiered (MVC) or Identity Server Separated (Angular): yes
• Exception message and stack trace:
• Steps to reproduce the issue:"

Azure AD authentication working as we expected but single sign-out not happening even though logout url configured in the azure portal (app registration)

• ABP Framework version: 5.1.4
• UI type: MVC
• DB provider: EF Core
• Tiered (MVC): no
• Exception message and stack trace:
• Steps to reproduce the issue:"

Hi I am trying to customize the identity server module to multitenant support. I have added the domain,domain.shared and ef modules. then removed the ignoremultitenancy support attribute from IdentityServerDbContext.

And I have added IMultiTenant to all entities related to Identityserver like clients,apiresources entities and also mapped the tenant attribute in IdentityServerDbContextModelCreatingExtensions.cs

then I am trying to do the migration using dbcontext getting below error,

Method not found: 'System.Nullable`1<System.Guid> Volo.Abp.IdentityServer.Clients.Client.get_TenantId()'.

Please help me for this issue

• ABP Framework version: v5.0.1
• UI type: MVC
• DB provider: EF Core
• **Tiered (MVC) **: yes
• Exception message and stack trace:
• Steps to reproduce the issue:"

I am calling the api(https://localhost:5001/connect/token) for authentication. I am getting the access token and refresh token successfully using password flow (grant type). After enabling the TFA for that user ,I am getting the response like Required TFA ** (https://localhost:5001/connect/token) **response. how to handle the TFA with password flow.

• ABP Framework version: v5.0.0
• UI type: MVC
• DB provider: EF Core
• Tiered (MVC): yes
• Exception message and stack trace:
• Steps to reproduce the issue:"

How to create access_token and refresh token manually by using identity server

• ABP Framework version: v5.0.0
• UI type: MVC
• DB provider: EF Core
• **Tiered (MVC) **: yes
• Exception message and stack trace:
• Steps to reproduce the issue:"

Is API based authentication exist? apart from openid

• ABP Framework version: v5.0.0
• UI type: MVC
• DB provider: EF Core
• Tiered (MVC) or Identity Server Separated (Angular): no
• Exception message and stack trace:
• Steps to reproduce the issue:"

We have deployed the ABP application for security testing and we have got CSP header missing Vulnerability

Please let us know how to configure the sever to return Content Security Policy HTTP header.