Keycloak with .NET WASM and .NET API
I have Keycloak running in a docker container, a .NET 7 WASM PWA project (standalone, client only, no server) and a .NET 7 API server.
I can authenticate against Keycloak and show permissions with the WASM project and I can authenticate via swagger in the API server and then call Authorize Controller endpoints.
But I cannot transfer the JWT from the WASM project to the API.
I tried and followed thies great tutorial: https://nikiforovall.github.io/blazor/dotnet/2022/12/08/dotnet-keycloak-blazorwasm-auth.html and even downloaded the source code. Everything works fine, but it is an WASM server project, not a standalone project with API server like I have.
I can recreate the problem with an MWE, so I can make sure none of my boiler plate code is creating the issue. Looking at a Fiddler log, I could see that the JWT is not transferred:
I would expect an authorize: Bearer, but it is missing.
On the WASM client I added
builder.Services.AddHttpClient(httpClientName, client => client.BaseAddress = new Uri(baseAddress)).AddHttpMessageHandler<BaseAddressAuthorizationMessageHandler>();
builder.Services.AddScoped(sp => sp.GetRequiredService<IHttpClientFactory>().CreateClient(httpClientName));
This should append the token to outgoing messages, like documented here, but it doesn't.
Edit: I am almost certain, that the reason the JWT is not automatically added to outgoing messages is because of Access tokens are only added when the request URI is within the app's base URI.
How can I change the BaseUri in Blazor WASM application to my Web API? Setting the BaseUri in the HttpClient is not doing the trick.
The solution is to implement and use CustomAuthorizationMessageHandler from here with the URI to the Web API:
public class CustomAuthorizationMessageHandler : AuthorizationMessageHandler
{
public CustomAuthorizationMessageHandler(IAccessTokenProvider provider,
NavigationManager navigation)
: base(provider, navigation)
{
ConfigureHandler(authorizedUrls: new[] { webApiUri });
}
}
- Why does 1.0/100.0 == 0.1/10.0 give True?
- How to organize the receive msg and user current input in C network such that it's clean
- Using inclusive scan syntax in OpenMP in the C language
- Unable to understand context in book "OOP in C" by Axel Schreiner
- How to dereference member from struct in which the definition is hid from user?
- variable-length array in struct with TI compiler in C (socket programming)
- A faster way to test 32bpp DDBs for a valid Alpha channel
- How can I compile the zephyr example-application as a freestanding application?
- Why does my forked process sometimes overwrite data in a file?
- Why in C can I initialize more values than the size of an array?
- _Generic in C needs typecasting?
- Declaring/defining an unused variable changes the output from an unrelated variable
- How to use gdb to explore the stack/heap?
- How can I read an input string of unknown length?
- Confused by difference between expression inside if and expression outside if
- Fast Arc Cos algorithm?
- Discrepancy of `unsigned long` size between llvm and gcc in riscv32
- GCC (C) - error: 'x' redeclared as different kind of symbol
- Why does GCC’s static analyser falsely warn that a pointer to an allocated memory block itself stored in an allocated memory block may leak?
- c language gcc compiler *.i file #3 "" 2 what is this?
- How to make clang compile to llvm IR
- Hashtable implementation in C
- EFI variables or config file on the EFI partition for EFI application?
- Pack high bit of every byte in ARM, for 64 bytes like AVX512 vpmovb2m?
- Calling an external C function (in a shared lib) from Perl with Inline::C does not work
- Can a C program detect if its own source code has been modified?
- Is this declaration UB?
- Eclipse C/C++ how to find variable belongs to which struct quickly
- Is this truly best way to delete last element in C?
- flint/arb.h: No such file or directory