Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

Aspnetcore authentication Correlation failed

Tags:

asp.net-core

I've searched through the different SO answers and on Aspnetcore Authentication on GIT but none of the solutions help. I have an issue with "correlation failed" and the reason is the correlation cookie is not being set even though it's clearly in the response header of the redirect to Google. enter image description here

Here's the response in Fiddler:

HTTP/1.1 302 Found Location: https://accounts.google.com/o/oauth2/v2/auth?response_type=code&client_id=996823962179-1vvr5h2icjroveset9849e8aqdks1g66.apps.googleusercontent.com&redirect_uri=https%3A%2F%2Flocalhost%2Fsignin-google&scope=openid%20profile%20email&state=CfDJ8EGRdEf8M7VDtyNKY6R10TxxM2kHFoDlOBkCQKoMQJXX3QPKcyH8quz80oy8Wd7Rq1Nnb-KhklzrC-XK4WOhikAVtJuFHIk_M4ZvLY8Le2FkjVNxJrHDsZeg7o1sMrABd_md1jxi-LelhURiB54SUAHbaJciseDc5NP897CSsrtYoPt_IWyqNOdxCjPntxwHYUzO2ZxIcfSLaLGu8rWlfHTEqvj_N7KQ0k8HQ8VwPYDXjAMwjjsGRdxR6dOl-vNfzfOqX0wZelvVsX5UIfzMjlCJ20lQxLIhlkhkpne14EYYNkJufqF4ZADD13jvsj4qnw Server: Kestrel Set-Cookie: .AspNetCore.Correlation.Google.WKzW6di96f3Fbh4ThkfIFHteUvNLusesaT0VjAMhrDU=N; expires=Sat, 17 Nov 2018 16:14:20 GMT; path=/signin-google; secure; samesite=strict; httponly Set-Cookie: .AspNetCore.Mvc.CookieTempDataProvider=; expires=Thu, 01 Jan 1970 00:00:00 GMT; path=/; secure; samesite=strict; httponly Date: Fri, 28 Dec 2018 03:45:54 GMT Content-Length: 0

I have the dataprotection set to store keys to one location and that is working as expected. My source control is here: https://github.com/jjkesinger/charts/tree/master/Charts

Any ideas? Does TLS on the local machine have anything to do with it? I can clone this project to another machine and it works fine. The machine it isn't working on is a Windows 10 dell experion

like image 887
John Kesinger Avatar asked Mar 05 '23 01:03

John Kesinger

2 Answers

I had this issue as well and had to set the the following options:

services.AddAuthentication().AddGoogle(g => 
{
   g.ClientId = XXXXXXX;
   g.ClientSecret = XXXXXX;
   g.CorrelationCookie.SameSite = SameSiteMode.Lax
}

The last line is what fixed my problem.

like image 135
Ashley Noelcke Avatar answered Mar 15 '23 00:03

Ashley Noelcke

SamesiteMode.Lax does not login you immediately

You need to use this code :

    .AddGoogle(o =>
    {
        o.ClientId = _configuration.GetValue<string>("ClientId");
        o.ClientSecret = _configuration.GetValue<string>("ClientSecret");
        o.SignInScheme = IdentityConstants.ExternalScheme;
        o.CorrelationCookie.SameSite = SameSiteMode.Unspecified;
    })

and it works!

like image 22
Hatef. Avatar answered Mar 15 '23 02:03

Hatef.
Sign in to Comment

Related questions

Pagedlist for asp.net core
How to write EF Core Query to filter on multiple tables?
.NET Core ChannelFactory - Set a X509Certificate2 as Client Certificate
Automapper inject DbContext in the Profile class
.NET CORE API with Angular 4 - The cookie token and the request token were swapped
Hyphenated Friendly URL Routing
Can you use ViewComponents with Razor pages?
EntityFramework Core 2 - ValueGeneratedOnAddOrUpdate [duplicate]
How to get class library assembly reference in .NET Core project?
Setting redirect_uri on AspNetCore OpenIdConnect
Exception in use Automapper: The instance of entity type cannot be tracked because another instance with the key is already being tracked
ASP.Net Core Web API Controller action with many parameters
How to Extend SignInManager in .net Core 2.0
How to change the default browser for debugging in Visual Studio 2017?
Asp.Net Core No service for type has been registered
HTTP ERROR 500 when returning a File result [closed]
Concurrency across a scoped DbContext
ASP.Net Core: Output 2 tags from one tag helper
React Native app won't complete negotiation with SignalR Core
ASP.NET Core logging in 2 different files

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!