Comments (7)
@bNobo I have reproduced the error and am looking into possible ways to solve this.
Currently the error handling will call LogError()
with the exception and then return an empty collection of grants.
I think that the error logging can be moved to be done per grant. This would log each grant error individually. Those grants that caused a failure are ignored and the rest returned.
An alternative is to collect a list of deserialization/unprotect failures and log an aggregate exception to avoid spamming the logs with individual errors.
I would prefer an aggregate exception to just write one Error log per call to GetAllUserGrantsAsync. @brockallen @josephdecock what do you think?
from identityserver.
I gave it a try and the patch fixed the issue. Thx !
from identityserver.
Thank you for your detailed error report and reproduction steps.
from identityserver.
I don't have a strong opinion here, but it probably is simpler to implement with individual errors logged, and a single value might be slightly easier to consume/search for in a log than a list?
from identityserver.
@AndersAbel is this something we're targeting our 7.0 release for a fix?
from identityserver.
PR merged.
from identityserver.
@bNobo we released patch 6.3.8 for this today, so please give it a try. thanks
from identityserver.
Related Issues (20)
- Consider marking the IdentityServer session cookies with `__Host` prefix
- OpenTelemetry Metrics Naming HOT 5
- Evolve IConcurrencyLock.Unlock to allow asynchronicity
- Raise an error if the idp doesn't match the requested idp HOT 2
- duende.identityserver is missing NuGet package README file
- Consider different approach for optional services from DI HOT 1
- Filter subject tokens (from token exchange) from logs HOT 4
- Check for empty ClientIds and Types collections in PersistedGrantFilter HOT 2
- Rewrite LicenseValidator.ValidateClient to not use ConcurrentDictionary HOT 1
- Consider post-quantum cryptography sample
- Consider allowing customization of PromptValuesSupported
- Consider allowing multiple IEventSink registrations HOT 2
- Investigate support for X509 Certs and EC Keys HOT 1
- CryptographicException while calling /.well-known/openid-configuration (.NET 8) HOT 14
- Add logging when DistributedCacheStateDataFormatter returns null HOT 8
- Let EF migrations create default table names
- GetIdentityServerRelativeUrl should take into account when IdentityServer is running at a subpath HOT 1
- Infinite loop when max_age=0
- Claim Issuer not persisted when using Server Side Sessions HOT 3
- IdentityServer Error LogLevel HOT 1
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from identityserver.