reactjsasp.netauthenticationasp.net-web-apicookies
ASP.NET dont see cookies, though it is set on frontend React side
`I am writing fullstack app (ASP.NET and React) and now trying to implement Steam auth using AspNet.Security.OpenId.Steam I already figured out how to set cookies, but when i try to check, if user is authenticated, i always get that it is false. Then i tried to look in HttpContext cookies, and found that there are none.
There is my auth code in backend
//AUTH
builder.Services.AddAuthentication(options =>
{
options.DefaultScheme = CookieAuthenticationDefaults.AuthenticationScheme;
})
.AddCookie(options =>
{
options.Cookie.SecurePolicy = CookieSecurePolicy.Always;
options.Cookie.SameSite = SameSiteMode.None;
options.LoginPath = "/login";
options.LogoutPath = "/signout";
})
.AddSteam();
//later ...
var app = builder.Build();
// Configure the HTTP request pipeline.
if (app.Environment.IsDevelopment())
{
app.UseSwagger();
app.UseSwaggerUI();
}
app.UseCors(builder => builder.AllowAnyOrigin()
.AllowAnyHeader()
.AllowAnyMethod());
app.UseAuthentication();
app.UseAuthorization();
app.MapControllers();
app.Run();
There is AuthController : All code except UserInfo endpoint was used from this sample
using Microsoft.AspNetCore.Authentication.Cookies;
using Microsoft.AspNetCore.Authentication;
using Microsoft.AspNetCore.Mvc;
using Server.Models.ResponseModels;
namespace Server.Controllers
{
[ApiController]
public class AuthenticationController : ControllerBase
{
[HttpGet("~/signin")]
public async Task<IActionResult> SignIn()
{
string provider = "Steam";
// Note: the "provider" parameter corresponds to the external
// authentication provider choosen by the user agent.
if (string.IsNullOrWhiteSpace(provider))
{
return BadRequest();
}
// Instruct the middleware corresponding to the requested external identity
// provider to redirect the user agent to its own authorization endpoint.
// Note: the authenticationScheme parameter must match the value configured in Startup.cs
return Challenge(new AuthenticationProperties { RedirectUri = "http://localhost:3000/" }, provider);
}
[HttpGet("~/signout"), HttpPost("~/signout")]
public IActionResult SignOutCurrentUser()
{
// Instruct the cookies middleware to delete the local cookie created
// when the user agent is redirected from the external identity provider
// after a successful authentication flow (e.g Google or Facebook).
return SignOut(new AuthenticationProperties { RedirectUri = "http://localhost:3000/" },
CookieAuthenticationDefaults.AuthenticationScheme);
}
[HttpPost("~/userInfo")]
public IActionResult GetUserInfo()
{
var Claims = HttpContext.User.Claims;
if (!User.Identity.IsAuthenticated)
{
return Ok(new UserInfoModel()
{
IsAuthenticated = false,
});
}
return Ok(new UserInfoModel()
{
IsAuthenticated = true,
});
}
}
}
And finally, this is code of my request on react side
const url=new URL('userInfo',process.env.REACT_APP_AUTH_URL);
fetch(url,{
method:'POST',
headers:{'Content-Type':'application/json'},
})
.then(response=>{
return response.json()
}).then(
//some code
)
As i said earlier, after signin endpoint my front application has cookie:
But when i try to get info there is none :
so, maybe my request from react side is bad? or is it about asp.net?
Solution
You probably should use credentials: 'include' in the fetch request to send cookies along with the react-side request. For example:
fetch(url, {
method:'POST',
headers:{'Content-Type':'application/json'},
credentials: 'include'
})
You can find more details in the docs here.
- How to add a hover-over tooltip to rhandonstable header cell?
- How to detect the right encoding for read.csv?
- Rcpp Rf_warningcall compiler warnings
- Modify the name of factor variables in lm function(summary function)
- Extreme value analysis and quantile estimation using log Pearson type 3 (Pearson III) distribution - R vs Python
- How to hide NAs when using xlsx::saveWorkbook?
- How do I retrieve a simple numeric value from a named numeric vector in R?
- Adding an image in navbar and adjusting alignment in Rmarkdown
- Matching pair-wise columns from left to right across rows in one dataframe to another dataframe and adding new columns with matching values
- Income to outcome flow chart in Sankey plotly R
- color mapping in geom_conn_bundle not showing correctly
- Print R package startup message AFTER automatic package conflict messages instead of before
- Summing a set of R dataframe rows (column-wise), while retaining the first n columns
- Added variable / partial regression plots for groups in an interaction?
- how to make a topoplot in R with coordinates variable distribution
- List of all functions in base R?
- Plotting multiple plots for different initial conditions in one graph
- Printing repetitively on the same line in R
- Generating UI/Server based on initial selection
- Subset dataframe based on pickerInput
- How to let user pick the data in R-shiny?
- Couldn't show my simple bar charts separately on Shiny R dashboardBody
- How to programmatically filter contents of a second shiny app displayed via iframe
- How to select specific interesting groups for the boxplot in R Shiny app?
- Crosstable and Plot grouping with reactive values
- Is there a way to make multiple Shiny picker inputs where the selections must be disjoint?
- Delay/avoid duplication of shiny server side functions until after credentials
- Predictions only returns value "1"
- How to display a busy indicator in a shiny app?
- Append doesn't work when writing to CSV in R