Fixed: ADFS Backoffice External integration (AddWs...
# help-with-umbracoa
Aaron Sawyer
02/20/2024, 10:49 PMOk I must be missing something. I have backoffice & membership integration with ADFS (on premesis). Both seem to work at first, but after login, the browser is redirected to a post (not a get request!) request of the login page and I am not logged in. What am I missing?
There are no errors logged.
Aaron Sawyer
02/21/2024, 5:57 PMUpdate, I have a fix for the backoffice logins. Will post details later
Aaron Sawyer
02/21/2024, 9:39 PMOk, so there were two things missing in my above code:
1. The CallbackPath must be set and be unique for each login type (backoffice vs membership). The callbackpath is the url that the middleware will take over to handle authentication - this is not the return url for the user.
2. There is a bug / breaking change in .NET Core. You have to use an alternate Saml Parser file. See here: https://github.com/AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet/issues/2406
Aaron Sawyer
02/21/2024, 9:41 PMAaron Sawyer
02/21/2024, 9:45 PMthe updated extensions file for backoffice ADFS auth:
https://cdn.discordapp.com/attachments/1209632881865924608/1209979169774112788/BackofficeAuthenticationExtensions.cs?ex=65e8e3ea&is=65d66eea&hm=3d6db06554cc2ee6a7c30a0889c7974ba2d3309bcbc3069da8792a09676f3117&
Aaron Sawyer
02/21/2024, 9:49 PM14 Views