Comments (8)
Yes, Microsoft should definitely handle this better. Is it better to send a PR to the OIDC handler?
I've investigated possibilities for better handling and unfortunately the current interfaces/function signatures do not allow any improved error handling. The returned value need to be a valid AuthenticationProperties
instance or null
.
We could add logging every time we return null because the key wasn't found in cache. But it could also be that just a startup message will help enough, #1550.
My suggestions is to put this on hold for the time being, merge #1550 and see if that is enough.
from identityserver.
Yes, closing for now. If support indicates that people are still confused by this even with the new logging we can reopen.
from identityserver.
Is there something that the MS code could do better here? They should report a different thing, it seems -- IOW, there's "no data to unprotect" vs. "the unprotecting of the data found has failed".
from identityserver.
Yes, Microsoft should definitely handle this better. Is it better to send a PR to the OIDC handler?
from identityserver.
Well, we should start by opening an issue with them. // @Tratcher
from identityserver.
Over here please: https://github.com/dotnet/aspnetcore
FYI, I don't work on AspNetCore anymore.
from identityserver.
Over here please: https://github.com/dotnet/aspnetcore
Thank you!
FYI, I don't work on AspNetCore anymore.
Ah, what's your focus these days?
from identityserver.
So should we close this now, given the PR is merged?
from identityserver.
Related Issues (20)
- Consider post-quantum cryptography sample
- Consider allowing customization of PromptValuesSupported
- Consider allowing multiple IEventSink registrations HOT 2
- Investigate support for X509 Certs and EC Keys HOT 1
- Let EF migrations create default table names
- GetIdentityServerRelativeUrl should take into account when IdentityServer is running at a subpath HOT 1
- Infinite loop when max_age=0
- Claim Issuer not persisted when using Server Side Sessions HOT 3
- IdentityServer Error LogLevel HOT 1
- Add server side session support for the external cookie scheme HOT 2
- Cookie Expiration with Serverside sessions doesn't revoke tokens
- Consider lowering the ClockSkew in TokenValidator
- Consider letting redirect url respect response_mode after receiving invalid request on authorization endpoint
- Consider extensibility point for sub/sid validation during endsession HOT 1
- Identity Server Login and Logout Localization Limitations HOT 7
- Consider adding strict license check for features in dev/test
- PromptMode Login with Pushed Authorization Requests Get Stuck in Login Loop HOT 1
- Investigate EF Core 8 performance issues
- Consider adding more validation to processed max_age and prompt
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from identityserver.