Identityserver4: Issue with MVC client for OpenID app

Created on 19 May 2018  Â·  9Comments  Â·  Source: IdentityServer/IdentityServer4

Hi,
I am following the steps for the MVC client to use OpenID (http://docs.identityserver.io/en/release/quickstarts/3_interactive_login.html).
Having set up the mvc client and the identity server as per the instructions,I have managed to get as far as the login screen.However when i try to sign in I seem to get an 400 status code page with the url shown below. There is nothing on the doc that seems to make it obvious what i might have missed.Any ideas on what is missing in my app
http://localhost:5000/account/login?returnUrl=%2Fconnect%2Fauthorize%2Fcallback%3Fclient_id%3Dmvc%26redirect_uri%3Dhttp%253A%252F%252Flocalhost%253A5002%252Fsignin-oidc%26response_type%3Did_token%26scope%3Dopenid%2520profile%26response_mode%3Dform_post%26nonce%3D636623363375579448.OTNmMzZlN2ItNjM1NS00ZWExLTgxNDktNTVhYTgxYTAzZTk4ZTg3OTY3ZjYtZTdiMS00M2JkLTljYTEtYjMyMmJhYTlkZjlm%26state%3DCfDJ8IAtEQoMrwNNnIvZApFa6UJtt6OsCJvqlXYU7h44BzCZ-5LXRlrQFQ75DJMD2Q5Rqr4K_BClHmc-zoOAirrEt7t5W5rp3inNnxFSgN1Er3qHNdUKDEubm6cZJyO0H-RkHAkZm4EeAx6gDDF2820aHFR5obZMJZS306jFh5Bb3bVaWhF0CEDTIaEY8yFe_5SALi-As_CKtGt-fDQ-snvUk79epT1sZpmN1ELtAVXa-_Ep0nVozkAQZwRi1mXNATyWq-0ynpsiXEGmK2QLUK9DDB7FU3Q9x2XN0xgXUWWuduvicinEFAQaqAutwdiRfiSWm-XLRy7A0jGINSk_os_adXg%26x-client-SKU%3DID_NET%26x-client-ver%3D2.1.4.0

question
Source
picture vikmn

All 9 comments

Some logs from the identity server console.
info: Microsoft.AspNetCore.DataProtection.KeyManagement.XmlKeyManager[0]
User profile is available. Using 'C:\Users\vikra\AppData\Local\ASP.NET\DataProtection-Keys' as key repository and Windows DPAPI to encrypt keys at
rest.
info: IdentityServer4.Startup[0]
You are using the in-memory version of the persisted grant store. This will store consent decisions, authorization codes, refresh and reference tokens in memory only. If you are using any of those features in production, you want to switch to a different store implementation.
Hosting environment: Production
Content root path: C:\code\api-authentication\identity-server
Now listening on: http://localhost:5000
Application started. Press Ctrl+C to shut down.
info: Microsoft.AspNetCore.Hosting.Internal.WebHost[1]
Request starting HTTP/1.1 GET http://localhost:5000/.well-known/openid-configuration
info: IdentityServer4.Hosting.IdentityServerMiddleware[0]
Invoking IdentityServer endpoint: IdentityServer4.Endpoints.DiscoveryEndpoint for /.well-known/openid-configuration
info: Microsoft.AspNetCore.Hosting.Internal.WebHost[2]
Request finished in 189.8133ms 200 application/json; charset=UTF-8
info: Microsoft.AspNetCore.Hosting.Internal.WebHost[1]
Request starting HTTP/1.1 GET http://localhost:5000/.well-known/openid-configuration/jwks
info: IdentityServer4.Hosting.IdentityServerMiddleware[0]
Invoking IdentityServer endpoint: IdentityServer4.Endpoints.DiscoveryKeyEndpoint for /.well-known/openid-configuration/jwks
info: Microsoft.AspNetCore.Hosting.Internal.WebHost[2]
Request finished in 46.137ms 200 application/json; charset=UTF-8
info: Microsoft.AspNetCore.Hosting.Internal.WebHost[1]
Request starting HTTP/1.1 GET http://localhost:5000/connect/authorize?client_id=mvc&redirect_uri=http%3A%2F%2Flocalhost%3A5002%2Fsignin-oidc&response_type=id_token&scope=openid%20profile&response_mode=form_post&nonce=636622696422270981.OGY5ZWI3MzUtMjRmOS00NmVhLWI2NDItYzY2NzIzZDg2ZTBmMWY1YTMxNjMtMTMyYi00YWZmLWE3YmUtOWNlZTAxMzljZGU5&state=CfDJ8IAtEQoMrwNNnIvZApFa6ULU8oKf9vfOv6pH7UYqG_Q1kBI9SV0d_kkWjlVAijvtPH8EQp7KerjQKapCzn7S9HQ9UeuNzfDF6X9B4CQH5Orlz0UCdlguxsf0tE7LMZ13msAdL6qOg-oIcQWoTWz0uED60Ydb6pb5O5Z026Ok44jTwB6CqSGRpsFPYr4Ysme-AAB4EUk53m8SRQqLCGKGemMJkNlbeAXulaPRtVR8g7-1PTtzN2yHvg2fPOG24bWHP-VF9SE9YB4rW_xRRsdrPFV2o-XYjON7wD-NDUiCOE5vAhLPudXF9_Zm66Pe-Ew-w8YmPWaI5g2kdd8wOR7KK8k&x-client-SKU=ID_NET&x-client-ver=2.1.4.0
info: IdentityServer4.Hosting.IdentityServerMiddleware[0]
Invoking IdentityServer endpoint: IdentityServer4.Endpoints.AuthorizeEndpoint for /connect/authorize
info: IdentityServer4.Endpoints.AuthorizeEndpoint[0]
ValidatedAuthorizeRequest
{
"ClientId": "mvc",
"ClientName": "MVC Client",
"RedirectUri": "http://localhost:5002/signin-oidc",
"AllowedRedirectUris": [
"http://localhost:5002/signin-oidc"
],
"SubjectId": "anonymous",
"ResponseType": "id_token",
"ResponseMode": "form_post",
"GrantType": "implicit",
"RequestedScopes": "openid profile",
"State": "CfDJ8IAtEQoMrwNNnIvZApFa6ULU8oKf9vfOv6pH7UYqG_Q1kBI9SV0d_kkWjlVAijvtPH8EQp7KerjQKapCzn7S9HQ9UeuNzfDF6X9B4CQH5Orlz0UCdlguxsf0tE7LMZ13msAdL6qOg-oIcQWoTWz0uED60Ydb6pb5O5Z026Ok44jTwB6CqSGRpsFPYr4Ysme-AAB4EUk53m8SRQqLCGKGemMJkNlbeAXulaPRtVR8g7-1PTtzN2yHvg2fPOG24bWHP-VF9SE9YB4rW_xRRsdrPFV2o-XYjON7wD-NDUiCOE5vAhLPudXF9_Zm66Pe-Ew-w8YmPWaI5g2kdd8wOR7KK8k",
"Nonce": "636622696422270981.OGY5ZWI3MzUtMjRmOS00NmVhLWI2NDItYzY2NzIzZDg2ZTBmMWY1YTMxNjMtMTMyYi00YWZmLWE3YmUtOWNlZTAxMzljZGU5",
"Raw": {
"client_id": "mvc",
"redirect_uri": "http://localhost:5002/signin-oidc",
"response_type": "id_token",
"scope": "openid profile",
"response_mode": "form_post",
"nonce": "636622696422270981.OGY5ZWI3MzUtMjRmOS00NmVhLWI2NDItYzY2NzIzZDg2ZTBmMWY1YTMxNjMtMTMyYi00YWZmLWE3YmUtOWNlZTAxMzljZGU5",
"state": "CfDJ8IAtEQoMrwNNnIvZApFa6ULU8oKf9vfOv6pH7UYqG_Q1kBI9SV0d_kkWjlVAijvtPH8EQp7KerjQKapCzn7S9HQ9UeuNzfDF6X9B4CQH5Orlz0UCdlguxsf0tE7LMZ13msAdL6qOg-oIcQWoTWz0uED60Ydb6pb5O5Z026Ok44jTwB6CqSGRpsFPYr4Ysme-AAB4EUk53m8SRQqLCGKGemMJkNlbeAXulaPRtVR8g7-1PTtzN2yHvg2fPOG24bWHP-VF9SE9YB4rW_xRRsdrPFV2o-XYjON7wD-NDUiCOE5vAhLPudXF9_Zm66Pe-Ew-w8YmPWaI5g2kdd8wOR7KK8k",
"x-client-SKU": "ID_NET",
"x-client-ver": "2.1.4.0"
}
}
info: IdentityServer4.ResponseHandling.AuthorizeInteractionResponseGenerator[0]
Showing login: User is not authenticated
info: Microsoft.AspNetCore.Hosting.Internal.WebHost[2]
Request finished in 135.9968ms 302
info: Microsoft.AspNetCore.Hosting.Internal.WebHost[1]
Request starting HTTP/1.1 GET http://localhost:5000/account/login?returnUrl=%2Fconnect%2Fauthorize%2Fcallback%3Fclient_id%3Dmvc%26redirect_uri%3Dhttp%253A%252F%252Flocalhost%253A5002%252Fsignin-oidc%26response_type%3Did_token%26scope%3Dopenid%2520profile%26response_mode%3Dform_post%26nonce%3D636622696422270981.OGY5ZWI3MzUtMjRmOS00NmVhLWI2NDItYzY2NzIzZDg2ZTBmMWY1YTMxNjMtMTMyYi00YWZmLWE3YmUtOWNlZTAxMzljZGU5%26state%3DCfDJ8IAtEQoMrwNNnIvZApFa6ULU8oKf9vfOv6pH7UYqG_Q1kBI9SV0d_kkWjlVAijvtPH8EQp7KerjQKapCzn7S9HQ9UeuNzfDF6X9B4CQH5Orlz0UCdlguxsf0tE7LMZ13msAdL6qOg-oIcQWoTWz0uED60Ydb6pb5O5Z026Ok44jTwB6CqSGRpsFPYr4Ysme-AAB4EUk53m8SRQqLCGKGemMJkNlbeAXulaPRtVR8g7-1PTtzN2yHvg2fPOG24bWHP-VF9SE9YB4rW_xRRsdrPFV2o-XYjON7wD-NDUiCOE5vAhLPudXF9_Zm66Pe-Ew-w8YmPWaI5g2kdd8wOR7KK8k%26x-client-SKU%3DID_NET%26x-client-ver%3D2.1.4.0
info: Microsoft.AspNetCore.Mvc.Internal.ControllerActionInvoker[1]
Executing action method IdentityServer4.Quickstart.UI.AccountController.Login (api-authentication) with arguments (/connect/authorize/callback?client_id=mvc&redirect_uri=http%3A%2F%2Flocalhost%3A5002%2Fsignin-oidc&response_type=id_token&scope=openid%20profile&response_mode=form_post&nonce=636622696422270981.OGY5ZWI3MzUtMjRmOS00NmVhLWI2NDItYzY2NzIzZDg2ZTBmMWY1YTMxNjMtMTMyYi00YWZmLWE3YmUtOWNlZTAxMzljZGU5&state=CfDJ8IAtEQoMrwNNnIvZApFa6ULU8oKf9vfOv6pH7UYqG_Q1kBI9SV0d_kkWjlVAijvtPH8EQp7KerjQKapCzn7S9HQ9UeuNzfDF6X9B4CQH5Orlz0UCdlguxsf0tE7LMZ13msAdL6qOg-oIcQWoTWz0uED60Ydb6pb5O5Z026Ok44jTwB6CqSGRpsFPYr4Ysme-AAB4EUk53m8SRQqLCGKGemMJkNlbeAXulaPRtVR8g7-1PTtzN2yHvg2fPOG24bWHP-VF9SE9YB4rW_xRRsdrPFV2o-XYjON7wD-NDUiCOE5vAhLPudXF9_Zm66Pe-Ew-w8YmPWaI5g2kdd8wOR7KK8k&x-client-SKU=ID_NET&x-client-ver=2.1.4.0) - ModelState is Valid
info: Microsoft.AspNetCore.Mvc.ViewFeatures.Internal.ViewResultExecutor[1]
Executing ViewResult, running view at path /Views/Account/Login.cshtml.
info: Microsoft.AspNetCore.Mvc.Internal.ControllerActionInvoker[2]
Executed action IdentityServer4.Quickstart.UI.AccountController.Login (api-authentication) in 4847.2089ms
info: Microsoft.AspNetCore.Hosting.Internal.WebHost[2]
Request finished in 4993.0504ms 200 text/html; charset=utf-8
info: Microsoft.AspNetCore.Hosting.Internal.WebHost[1]
Request starting HTTP/1.1 GET http://localhost:5000/lib/bootstrap/css/bootstrap.css
info: Microsoft.AspNetCore.Hosting.Internal.WebHost[1]
Request starting HTTP/1.1 GET http://localhost:5000/css/site.css
info: Microsoft.AspNetCore.StaticFiles.StaticFileMiddleware[2]
Sending file. Request path: '/lib/bootstrap/css/bootstrap.css'. Physical path: 'C:\code\api-authentication\identity-server\wwwroot\lib\bootstrap\css\bootstrap.css'
info: Microsoft.AspNetCore.StaticFiles.StaticFileMiddleware[2]
Sending file. Request path: '/css/site.css'. Physical path: 'C:\code\api-authentication\identity-server\wwwroot\css\site.css'
info: Microsoft.AspNetCore.Hosting.Internal.WebHost[2]
Request finished in 49.2482ms 200 text/css
info: Microsoft.AspNetCore.Hosting.Internal.WebHost[2]
Request finished in 53.1017ms 200 text/css
info: Microsoft.AspNetCore.Hosting.Internal.WebHost[1]
Request starting HTTP/1.1 GET http://localhost:5000/lib/jquery/jquery.js
info: Microsoft.AspNetCore.StaticFiles.StaticFileMiddleware[2]
Sending file. Request path: '/lib/jquery/jquery.js'. Physical path: 'C:\code\api-authentication\identity-server\wwwroot\lib\jquery\jquery.js'
info: Microsoft.AspNetCore.Hosting.Internal.WebHost[2]
Request finished in 117.6918ms 200 application/javascript
info: Microsoft.AspNetCore.Hosting.Internal.WebHost[1]
Request starting HTTP/1.1 GET http://localhost:5000/lib/bootstrap/js/bootstrap.js
info: Microsoft.AspNetCore.Hosting.Internal.WebHost[1]
Request starting HTTP/1.1 GET http://localhost:5000/icon.png
info: Microsoft.AspNetCore.StaticFiles.StaticFileMiddleware[2]
Sending file. Request path: '/lib/bootstrap/js/bootstrap.js'. Physical path: 'C:\code\api-authentication\identity-server\wwwroot\lib\bootstrap\js\bootstrap.js'
info: Microsoft.AspNetCore.StaticFiles.StaticFileMiddleware[2]
Sending file. Request path: '/icon.png'. Physical path: 'C:\code\api-authentication\identity-server\wwwroot\icon.png'
info: Microsoft.AspNetCore.Hosting.Internal.WebHost[2]
Request finished in 4.7169ms 200 application/javascript
info: Microsoft.AspNetCore.Hosting.Internal.WebHost[2]
Request finished in 7.0183ms 200 image/png
info: Microsoft.AspNetCore.Hosting.Internal.WebHost[1]
Request starting HTTP/1.1 POST http://localhost:5000/account/login?returnUrl=%2Fconnect%2Fauthorize%2Fcallback%3Fclient_id%3Dmvc%26redirect_uri%3Dhttp%253A%252F%252Flocalhost%253A5002%252Fsignin-oidc%26response_type%3Did_token%26scope%3Dopenid%2520profile%26response_mode%3Dform_post%26nonce%3D636622696422270981.OGY5ZWI3MzUtMjRmOS00NmVhLWI2NDItYzY2NzIzZDg2ZTBmMWY1YTMxNjMtMTMyYi00YWZmLWE3YmUtOWNlZTAxMzljZGU5%26state%3DCfDJ8IAtEQoMrwNNnIvZApFa6ULU8oKf9vfOv6pH7UYqG_Q1kBI9SV0d_kkWjlVAijvtPH8EQp7KerjQKapCzn7S9HQ9UeuNzfDF6X9B4CQH5Orlz0UCdlguxsf0tE7LMZ13msAdL6qOg-oIcQWoTWz0uED60Ydb6pb5O5Z026Ok44jTwB6CqSGRpsFPYr4Ysme-AAB4EUk53m8SRQqLCGKGemMJkNlbeAXulaPRtVR8g7-1PTtzN2yHvg2fPOG24bWHP-VF9SE9YB4rW_xRRsdrPFV2o-XYjON7wD-NDUiCOE5vAhLPudXF9_Zm66Pe-Ew-w8YmPWaI5g2kdd8wOR7KK8k%26x-client-SKU%3DID_NET%26x-client-ver%3D2.1.4.0 application/x-www-form-urlencoded 1012
info: Microsoft.AspNetCore.Mvc.Internal.ControllerActionInvoker[1]
Executing action method IdentityServer4.Quickstart.UI.AccountController.Login (api-authentication) with arguments (IdentityServer4.Quickstart.UI.LoginInputModel, login) - ModelState is Valid
info: Microsoft.AspNetCore.Mvc.ViewFeatures.Internal.ViewResultExecutor[1]
Executing ViewResult, running view at path /Views/Account/Login.cshtml.
info: Microsoft.AspNetCore.Mvc.Internal.ControllerActionInvoker[2]
Executed action IdentityServer4.Quickstart.UI.AccountController.Login (api-authentication) in 60.2085ms
info: Microsoft.AspNetCore.Hosting.Internal.WebHost[2]
Request finished in 92.2852ms 200 text/html; charset=utf-8
info: Microsoft.AspNetCore.Hosting.Internal.WebHost[1]
Request starting HTTP/1.1 GET http://localhost:5000/lib/bootstrap/css/bootstrap.css
info: Microsoft.AspNetCore.Hosting.Internal.WebHost[1]
Request starting HTTP/1.1 GET http://localhost:5000/css/site.css
info: Microsoft.AspNetCore.StaticFiles.StaticFileMiddleware[6]
The file /lib/bootstrap/css/bootstrap.css was not modified
info: Microsoft.AspNetCore.Hosting.Internal.WebHost[2]
Request finished in 7.3437ms 304 text/css
info: Microsoft.AspNetCore.StaticFiles.StaticFileMiddleware[6]
The file /css/site.css was not modified
info: Microsoft.AspNetCore.Hosting.Internal.WebHost[2]
Request finished in 18.609ms 304 text/css
info: Microsoft.AspNetCore.Hosting.Internal.WebHost[1]
Request starting HTTP/1.1 GET http://localhost:5000/lib/jquery/jquery.js
info: Microsoft.AspNetCore.StaticFiles.StaticFileMiddleware[6]
The file /lib/jquery/jquery.js was not modified
info: Microsoft.AspNetCore.Hosting.Internal.WebHost[2]
Request finished in 0.8571ms 304 application/javascript
info: Microsoft.AspNetCore.Hosting.Internal.WebHost[1]
Request starting HTTP/1.1 GET http://localhost:5000/lib/bootstrap/js/bootstrap.js
info: Microsoft.AspNetCore.StaticFiles.StaticFileMiddleware[6]
The file /lib/bootstrap/js/bootstrap.js was not modified
info: Microsoft.AspNetCore.Hosting.Internal.WebHost[2]
Request finished in 0.5029ms 304 application/javascript
info: Microsoft.AspNetCore.Hosting.Internal.WebHost[1]
Request starting HTTP/1.1 GET http://localhost:5000/icon.png
info: Microsoft.AspNetCore.StaticFiles.StaticFileMiddleware[6]
The file /icon.png was not modified
info: Microsoft.AspNetCore.Hosting.Internal.WebHost[2]
Request finished in 0.565ms 304 image/png
Application is shutting down...
⚡ vikra@LAPTOP-1F31KEBP  C..\api-authentication\identity-server   master ≣ ~1 -0 !  dotnet run
info: Microsoft.AspNetCore.DataProtection.KeyManagement.XmlKeyManager[0]
User profile is available. Using 'C:\Users\vikra\AppData\Local\ASP.NET\DataProtection-Keys' as key repository and Windows DPAPI to encrypt keys at
rest.
info: IdentityServer4.Startup[0]
You are using the in-memory version of the persisted grant store. This will store consent decisions, authorization codes, refresh and reference tokens in memory only. If you are using any of those features in production, you want to switch to a different store implementation.
Hosting environment: Production
Content root path: C:\code\api-authentication\identity-server
Now listening on: http://localhost:5000
Application started. Press Ctrl+C to shut down.
info: Microsoft.AspNetCore.Hosting.Internal.WebHost[1]
Request starting HTTP/1.1 POST http://localhost:5000/account/login?returnUrl=%2Fconnect%2Fauthorize%2Fcallback%3Fclient_id%3Dmvc%26redirect_uri%3Dhttp%253A%252F%252Flocalhost%253A5002%252Fsignin-oidc%26response_type%3Did_token%26scope%3Dopenid%2520profile%26response_mode%3Dform_post%26nonce%3D636622696422270981.OGY5ZWI3MzUtMjRmOS00NmVhLWI2NDItYzY2NzIzZDg2ZTBmMWY1YTMxNjMtMTMyYi00YWZmLWE3YmUtOWNlZTAxMzljZGU5%26state%3DCfDJ8IAtEQoMrwNNnIvZApFa6ULU8oKf9vfOv6pH7UYqG_Q1kBI9SV0d_kkWjlVAijvtPH8EQp7KerjQKapCzn7S9HQ9UeuNzfDF6X9B4CQH5Orlz0UCdlguxsf0tE7LMZ13msAdL6qOg-oIcQWoTWz0uED60Ydb6pb5O5Z026Ok44jTwB6CqSGRpsFPYr4Ysme-AAB4EUk53m8SRQqLCGKGemMJkNlbeAXulaPRtVR8g7-1PTtzN2yHvg2fPOG24bWHP-VF9SE9YB4rW_xRRsdrPFV2o-XYjON7wD-NDUiCOE5vAhLPudXF9_Zm66Pe-Ew-w8YmPWaI5g2kdd8wOR7KK8k%26x-client-SKU%3DID_NET%26x-client-ver%3D2.1.4.0 application/x-www-form-urlencoded 1012
info: Microsoft.AspNetCore.Mvc.Internal.ControllerActionInvoker[1]
Executing action method IdentityServer4.Quickstart.UI.AccountController.Login (api-authentication) with arguments (IdentityServer4.Quickstart.UI.LoginInputModel, login) - ModelState is Valid
info: Microsoft.AspNetCore.Mvc.Internal.ControllerActionInvoker[2]
Executed action IdentityServer4.Quickstart.UI.AccountController.Login (api-authentication) in 158.9408ms
fail: Microsoft.AspNetCore.Server.Kestrel[13]
Connection id "0HLDSV8FG7FTH", Request id "0HLDSV8FG7FTH:00000001": An unhandled exception was thrown by the application.
System.ArgumentException: SubjectId is mandatory
Parameter name: subjectId
at IdentityServer4.IdentityServerUser..ctor(String subjectId) in C:\local\identity\server4\IdentityServer4\src\IdentityServer4\IdentityServerUser.cs:line 55
at Microsoft.AspNetCore.Http.AuthenticationManagerExtensions.d__3.MoveNext() in C:\local\identity\server4\IdentityServer4\src\IdentityServer4\Extensions\HttpContextAuthenticationExtensions.cs:line 97
--- End of stack trace from previous location where exception was thrown ---
at System.Runtime.ExceptionServices.ExceptionDispatchInfo.Throw()
at System.Runtime.CompilerServices.TaskAwaiter.HandleNonSuccessAndDebuggerNotification(Task task)
at IdentityServer4.Quickstart.UI.AccountController.d__7.MoveNext() in C:\code\api-authentication\identity-server\Quickstart\Account\AccountController.cs:line 130
--- End of stack trace from previous location where exception was thrown ---
at System.Runtime.ExceptionServices.ExceptionDispatchInfo.Throw()
at System.Runtime.CompilerServices.TaskAwaiter.HandleNonSuccessAndDebuggerNotification(Task task)
at System.Runtime.CompilerServices.TaskAwaiter1.GetResult() at Microsoft.AspNetCore.Mvc.Internal.ControllerActionInvoker.<InvokeActionMethodAsync>d__12.MoveNext() --- End of stack trace from previous location where exception was thrown --- at System.Runtime.ExceptionServices.ExceptionDispatchInfo.Throw() at System.Runtime.CompilerServices.TaskAwaiter.HandleNonSuccessAndDebuggerNotification(Task task) at Microsoft.AspNetCore.Mvc.Internal.ControllerActionInvoker.<InvokeNextActionFilterAsync>d__10.MoveNext() --- End of stack trace from previous location where exception was thrown --- at System.Runtime.ExceptionServices.ExceptionDispatchInfo.Throw() at Microsoft.AspNetCore.Mvc.Internal.ControllerActionInvoker.Rethrow(ActionExecutedContext context) at Microsoft.AspNetCore.Mvc.Internal.ControllerActionInvoker.Next(State& next, Scope& scope, Object& state, Boolean& isCompleted) at Microsoft.AspNetCore.Mvc.Internal.ControllerActionInvoker.<InvokeInnerFilterAsync>d__14.MoveNext() --- End of stack trace from previous location where exception was thrown --- at System.Runtime.ExceptionServices.ExceptionDispatchInfo.Throw() at System.Runtime.CompilerServices.TaskAwaiter.HandleNonSuccessAndDebuggerNotification(Task task) at Microsoft.AspNetCore.Mvc.Internal.ResourceInvoker.<InvokeNextResourceFilter>d__22.MoveNext() --- End of stack trace from previous location where exception was thrown --- at System.Runtime.ExceptionServices.ExceptionDispatchInfo.Throw() at Microsoft.AspNetCore.Mvc.Internal.ResourceInvoker.Rethrow(ResourceExecutedContext context) at Microsoft.AspNetCore.Mvc.Internal.ResourceInvoker.Next(State& next, Scope& scope, Object& state, Boolean& isCompleted) at Microsoft.AspNetCore.Mvc.Internal.ResourceInvoker.<InvokeFilterPipelineAsync>d__17.MoveNext() --- End of stack trace from previous location where exception was thrown --- at System.Runtime.ExceptionServices.ExceptionDispatchInfo.Throw() at System.Runtime.CompilerServices.TaskAwaiter.HandleNonSuccessAndDebuggerNotification(Task task) at Microsoft.AspNetCore.Mvc.Internal.ResourceInvoker.<InvokeAsync>d__15.MoveNext() --- End of stack trace from previous location where exception was thrown --- at System.Runtime.ExceptionServices.ExceptionDispatchInfo.Throw() at System.Runtime.CompilerServices.TaskAwaiter.HandleNonSuccessAndDebuggerNotification(Task task) at Microsoft.AspNetCore.Builder.RouterMiddleware.<Invoke>d__4.MoveNext() --- End of stack trace from previous location where exception was thrown --- at System.Runtime.ExceptionServices.ExceptionDispatchInfo.Throw() at System.Runtime.CompilerServices.TaskAwaiter.HandleNonSuccessAndDebuggerNotification(Task task) at IdentityServer4.Hosting.IdentityServerMiddleware.<Invoke>d__3.MoveNext() in C:\local\identity\server4\IdentityServer4\src\IdentityServer4\Hosting\IdentityServerMiddleware.cs:line 72 --- End of stack trace from previous location where exception was thrown --- at System.Runtime.ExceptionServices.ExceptionDispatchInfo.Throw() at System.Runtime.CompilerServices.TaskAwaiter.HandleNonSuccessAndDebuggerNotification(Task task) at Microsoft.AspNetCore.Authentication.AuthenticationMiddleware.<Invoke>d__6.MoveNext() --- End of stack trace from previous location where exception was thrown --- at System.Runtime.ExceptionServices.ExceptionDispatchInfo.Throw() at System.Runtime.CompilerServices.TaskAwaiter.HandleNonSuccessAndDebuggerNotification(Task task) at Microsoft.AspNetCore.Cors.Infrastructure.CorsMiddleware.<Invoke>d__7.MoveNext() --- End of stack trace from previous location where exception was thrown --- at System.Runtime.ExceptionServices.ExceptionDispatchInfo.Throw() at System.Runtime.CompilerServices.TaskAwaiter.HandleNonSuccessAndDebuggerNotification(Task task) at IdentityServer4.Hosting.BaseUrlMiddleware.<Invoke>d__3.MoveNext() in C:\local\identity\server4\IdentityServer4\src\IdentityServer4\Hosting\BaseUrlMiddleware.cs:line 36 --- End of stack trace from previous location where exception was thrown --- at System.Runtime.ExceptionServices.ExceptionDispatchInfo.Throw() at System.Runtime.CompilerServices.TaskAwaiter.HandleNonSuccessAndDebuggerNotification(Task task) at Microsoft.AspNetCore.Hosting.Internal.RequestServicesContainerMiddleware.<Invoke>d__3.MoveNext() --- End of stack trace from previous location where exception was thrown --- at System.Runtime.ExceptionServices.ExceptionDispatchInfo.Throw() at System.Runtime.CompilerServices.TaskAwaiter.HandleNonSuccessAndDebuggerNotification(Task task) at Microsoft.AspNetCore.Server.Kestrel.Core.Internal.Http.Frame1.d__2.MoveNext()
info: Microsoft.AspNetCore.Hosting.Internal.WebHost[2]
Request finished in 448.3421ms 500
info: Microsoft.AspNetCore.Hosting.Internal.WebHost[1]
Request starting HTTP/1.1 GET http://localhost:5000/.well-known/openid-configuration
info: IdentityServer4.Hosting.IdentityServerMiddleware[0]
Invoking IdentityServer endpoint: IdentityServer4.Endpoints.DiscoveryEndpoint for /.well-known/openid-configuration
info: Microsoft.AspNetCore.Hosting.Internal.WebHost[2]
Request finished in 126.7832ms 200 application/json; charset=UTF-8
info: Microsoft.AspNetCore.Hosting.Internal.WebHost[1]
Request starting HTTP/1.1 GET http://localhost:5000/.well-known/openid-configuration/jwks
info: IdentityServer4.Hosting.IdentityServerMiddleware[0]
Invoking IdentityServer endpoint: IdentityServer4.Endpoints.DiscoveryKeyEndpoint for /.well-known/openid-configuration/jwks
info: Microsoft.AspNetCore.Hosting.Internal.WebHost[2]
Request finished in 40.4137ms 200 application/json; charset=UTF-8
info: Microsoft.AspNetCore.Hosting.Internal.WebHost[1]
Request starting HTTP/1.1 GET http://localhost:5000/connect/authorize?client_id=mvc&redirect_uri=http%3A%2F%2Flocalhost%3A5002%2Fsignin-oidc&response_type=id_token&scope=openid%20profile&response_mode=form_post&nonce=636622704942678057.MDBkZDA4OTgtZWUwNS00MTdhLWEzZDgtN2U0Y2Y0ZTIyYmM3MmE1NzYxYjctMTlkOS00MDE4LTg0OTYtODlhYjc3YzMyZmFm&state=CfDJ8IAtEQoMrwNNnIvZApFa6ULcoIi1u9uRbyzwL0BAMWK2MvcXHDO6dCMCh1KY_gN-yQZfuqOVwKoZOPmILS0-0oZiFyTgpR_cGSmPmFfRAxCuJN2WiCYJtvcvKOFX4--O8DGAa659LnQqE0gPkB-BWBKUj6m5kYOxq3RD9fq6riGaTwz9PdveLBd9x2wtDd7mWUEfA4RZo6t964Y1glEl71l4lFY_netI3ZLUAQWHnPBJ9DRRIYXX48juvFiJcJZPOMI8Uz9mpfCoXTrhBWWWAuAxjZIj6-4tTv7nf_u0jIcgEjwInc9NE0tlUChQhfz9HY0wuI90Vb847V2g8kum1B8&x-client-SKU=ID_NET&x-client-ver=2.1.4.0
info: IdentityServer4.Hosting.IdentityServerMiddleware[0]
Invoking IdentityServer endpoint: IdentityServer4.Endpoints.AuthorizeEndpoint for /connect/authorize
info: IdentityServer4.Endpoints.AuthorizeEndpoint[0]
ValidatedAuthorizeRequest
{
"ClientId": "mvc",
"ClientName": "MVC Client",
"RedirectUri": "http://localhost:5002/signin-oidc",
"AllowedRedirectUris": [
"http://localhost:5002/signin-oidc"
],
"SubjectId": "anonymous",
"ResponseType": "id_token",
"ResponseMode": "form_post",
"GrantType": "implicit",
"RequestedScopes": "openid profile",
"State": "CfDJ8IAtEQoMrwNNnIvZApFa6ULcoIi1u9uRbyzwL0BAMWK2MvcXHDO6dCMCh1KY_gN-yQZfuqOVwKoZOPmILS0-0oZiFyTgpR_cGSmPmFfRAxCuJN2WiCYJtvcvKOFX4--O8DGAa659LnQqE0gPkB-BWBKUj6m5kYOxq3RD9fq6riGaTwz9PdveLBd9x2wtDd7mWUEfA4RZo6t964Y1glEl71l4lFY_netI3ZLUAQWHnPBJ9DRRIYXX48juvFiJcJZPOMI8Uz9mpfCoXTrhBWWWAuAxjZIj6-4tTv7nf_u0jIcgEjwInc9NE0tlUChQhfz9HY0wuI90Vb847V2g8kum1B8",
"Nonce": "636622704942678057.MDBkZDA4OTgtZWUwNS00MTdhLWEzZDgtN2U0Y2Y0ZTIyYmM3MmE1NzYxYjctMTlkOS00MDE4LTg0OTYtODlhYjc3YzMyZmFm",
"Raw": {
"client_id": "mvc",
"redirect_uri": "http://localhost:5002/signin-oidc",
"response_type": "id_token",
"scope": "openid profile",
"response_mode": "form_post",
"nonce": "636622704942678057.MDBkZDA4OTgtZWUwNS00MTdhLWEzZDgtN2U0Y2Y0ZTIyYmM3MmE1NzYxYjctMTlkOS00MDE4LTg0OTYtODlhYjc3YzMyZmFm",
"state": "CfDJ8IAtEQoMrwNNnIvZApFa6ULcoIi1u9uRbyzwL0BAMWK2MvcXHDO6dCMCh1KY_gN-yQZfuqOVwKoZOPmILS0-0oZiFyTgpR_cGSmPmFfRAxCuJN2WiCYJtvcvKOFX4--O8DGAa659LnQqE0gPkB-BWBKUj6m5kYOxq3RD9fq6riGaTwz9PdveLBd9x2wtDd7mWUEfA4RZo6t964Y1glEl71l4lFY_netI3ZLUAQWHnPBJ9DRRIYXX48juvFiJcJZPOMI8Uz9mpfCoXTrhBWWWAuAxjZIj6-4tTv7nf_u0jIcgEjwInc9NE0tlUChQhfz9HY0wuI90Vb847V2g8kum1B8",
"x-client-SKU": "ID_NET",
"x-client-ver": "2.1.4.0"
}
}
info: IdentityServer4.ResponseHandling.AuthorizeInteractionResponseGenerator[0]
Showing login: User is not authenticated
info: Microsoft.AspNetCore.Hosting.Internal.WebHost[2]
Request finished in 55.0888ms 302
info: Microsoft.AspNetCore.Hosting.Internal.WebHost[1]
Request starting HTTP/1.1 GET http://localhost:5000/account/login?returnUrl=%2Fconnect%2Fauthorize%2Fcallback%3Fclient_id%3Dmvc%26redirect_uri%3Dhttp%253A%252F%252Flocalhost%253A5002%252Fsignin-oidc%26response_type%3Did_token%26scope%3Dopenid%2520profile%26response_mode%3Dform_post%26nonce%3D636622704942678057.MDBkZDA4OTgtZWUwNS00MTdhLWEzZDgtN2U0Y2Y0ZTIyYmM3MmE1NzYxYjctMTlkOS00MDE4LTg0OTYtODlhYjc3YzMyZmFm%26state%3DCfDJ8IAtEQoMrwNNnIvZApFa6ULcoIi1u9uRbyzwL0BAMWK2MvcXHDO6dCMCh1KY_gN-yQZfuqOVwKoZOPmILS0-0oZiFyTgpR_cGSmPmFfRAxCuJN2WiCYJtvcvKOFX4--O8DGAa659LnQqE0gPkB-BWBKUj6m5kYOxq3RD9fq6riGaTwz9PdveLBd9x2wtDd7mWUEfA4RZo6t964Y1glEl71l4lFY_netI3ZLUAQWHnPBJ9DRRIYXX48juvFiJcJZPOMI8Uz9mpfCoXTrhBWWWAuAxjZIj6-4tTv7nf_u0jIcgEjwInc9NE0tlUChQhfz9HY0wuI90Vb847V2g8kum1B8%26x-client-SKU%3DID_NET%26x-client-ver%3D2.1.4.0
info: Microsoft.AspNetCore.Mvc.Internal.ControllerActionInvoker[1]
Executing action method IdentityServer4.Quickstart.UI.AccountController.Login (api-authentication) with arguments (/connect/authorize/callback?client_id=mvc&redirect_uri=http%3A%2F%2Flocalhost%3A5002%2Fsignin-oidc&response_type=id_token&scope=openid%20profile&response_mode=form_post&nonce=636622704942678057.MDBkZDA4OTgtZWUwNS00MTdhLWEzZDgtN2U0Y2Y0ZTIyYmM3MmE1NzYxYjctMTlkOS00MDE4LTg0OTYtODlhYjc3YzMyZmFm&state=CfDJ8IAtEQoMrwNNnIvZApFa6ULcoIi1u9uRbyzwL0BAMWK2MvcXHDO6dCMCh1KY_gN-yQZfuqOVwKoZOPmILS0-0oZiFyTgpR_cGSmPmFfRAxCuJN2WiCYJtvcvKOFX4--O8DGAa659LnQqE0gPkB-BWBKUj6m5kYOxq3RD9fq6riGaTwz9PdveLBd9x2wtDd7mWUEfA4RZo6t964Y1glEl71l4lFY_netI3ZLUAQWHnPBJ9DRRIYXX48juvFiJcJZPOMI8Uz9mpfCoXTrhBWWWAuAxjZIj6-4tTv7nf_u0jIcgEjwInc9NE0tlUChQhfz9HY0wuI90Vb847V2g8kum1B8&x-client-SKU=ID_NET&x-client-ver=2.1.4.0) - ModelState is Valid
info: Microsoft.AspNetCore.Mvc.ViewFeatures.Internal.ViewResultExecutor[1]
Executing ViewResult, running view at path /Views/Account/Login.cshtml.
info: Microsoft.AspNetCore.Mvc.Internal.ControllerActionInvoker[2]
Executed action IdentityServer4.Quickstart.UI.AccountController.Login (api-authentication) in 3157.0245ms
info: Microsoft.AspNetCore.Hosting.Internal.WebHost[2]
Request finished in 3165.4404ms 200 text/html; charset=utf-8
info: Microsoft.AspNetCore.Hosting.Internal.WebHost[1]
Request starting HTTP/1.1 GET http://localhost:5000/css/site.css
info: Microsoft.AspNetCore.Hosting.Internal.WebHost[1]
Request starting HTTP/1.1 GET http://localhost:5000/lib/bootstrap/css/bootstrap.css
info: Microsoft.AspNetCore.StaticFiles.StaticFileMiddleware[6]
The file /css/site.css was not modified
info: Microsoft.AspNetCore.StaticFiles.StaticFileMiddleware[6]
The file /lib/bootstrap/css/bootstrap.css was not modified
info: Microsoft.AspNetCore.Hosting.Internal.WebHost[2]
Request finished in 7.9376ms 304 text/css
info: Microsoft.AspNetCore.Hosting.Internal.WebHost[2]
Request finished in 8.0906ms 304 text/css
info: Microsoft.AspNetCore.Hosting.Internal.WebHost[1]
Request starting HTTP/1.1 GET http://localhost:5000/lib/jquery/jquery.js
info: Microsoft.AspNetCore.StaticFiles.StaticFileMiddleware[6]
The file /lib/jquery/jquery.js was not modified
info: Microsoft.AspNetCore.Hosting.Internal.WebHost[2]
Request finished in 0.7761ms 304 application/javascript
info: Microsoft.AspNetCore.Hosting.Internal.WebHost[1]
Request starting HTTP/1.1 GET http://localhost:5000/lib/bootstrap/js/bootstrap.js
info: Microsoft.AspNetCore.StaticFiles.StaticFileMiddleware[6]
The file /lib/bootstrap/js/bootstrap.js was not modified
info: Microsoft.AspNetCore.Hosting.Internal.WebHost[2]
Request finished in 0.6139ms 304 application/javascript
info: Microsoft.AspNetCore.Hosting.Internal.WebHost[1]
Request starting HTTP/1.1 GET http://localhost:5000/icon.png
info: Microsoft.AspNetCore.StaticFiles.StaticFileMiddleware[6]
The file /icon.png was not modified
info: Microsoft.AspNetCore.Hosting.Internal.WebHost[2]
Request finished in 3.0919ms 304 image/png
info: Microsoft.AspNetCore.Hosting.Internal.WebHost[1]
Request starting HTTP/1.1 GET http://localhost:5000/account/login?returnUrl=%2Fconnect%2Fauthorize%2Fcallback%3Fclient_id%3Dmvc%26redirect_uri%3Dhttp%253A%252F%252Flocalhost%253A5002%252Fsignin-oidc%26response_type%3Did_token%26scope%3Dopenid%2520profile%26response_mode%3Dform_post%26nonce%3D636622704942678057.MDBkZDA4OTgtZWUwNS00MTdhLWEzZDgtN2U0Y2Y0ZTIyYmM3MmE1NzYxYjctMTlkOS00MDE4LTg0OTYtODlhYjc3YzMyZmFm%26state%3DCfDJ8IAtEQoMrwNNnIvZApFa6ULcoIi1u9uRbyzwL0BAMWK2MvcXHDO6dCMCh1KY_gN-yQZfuqOVwKoZOPmILS0-0oZiFyTgpR_cGSmPmFfRAxCuJN2WiCYJtvcvKOFX4--O8DGAa659LnQqE0gPkB-BWBKUj6m5kYOxq3RD9fq6riGaTwz9PdveLBd9x2wtDd7mWUEfA4RZo6t964Y1glEl71l4lFY_netI3ZLUAQWHnPBJ9DRRIYXX48juvFiJcJZPOMI8Uz9mpfCoXTrhBWWWAuAxjZIj6-4tTv7nf_u0jIcgEjwInc9NE0tlUChQhfz9HY0wuI90Vb847V2g8kum1B8%26x-client-SKU%3DID_NET%26x-client-ver%3D2.1.4.0&_=1526673697694
info: Microsoft.AspNetCore.Mvc.Internal.ControllerActionInvoker[1]
Executing action method IdentityServer4.Quickstart.UI.AccountController.Login (api-authentication) with arguments (/connect/authorize/callback?client_id=mvc&redirect_uri=http%3A%2F%2Flocalhost%3A5002%2Fsignin-oidc&response_type=id_token&scope=openid%20profile&response_mode=form_post&nonce=636622704942678057.MDBkZDA4OTgtZWUwNS00MTdhLWEzZDgtN2U0Y2Y0ZTIyYmM3MmE1NzYxYjctMTlkOS00MDE4LTg0OTYtODlhYjc3YzMyZmFm&state=CfDJ8IAtEQoMrwNNnIvZApFa6ULcoIi1u9uRbyzwL0BAMWK2MvcXHDO6dCMCh1KY_gN-yQZfuqOVwKoZOPmILS0-0oZiFyTgpR_cGSmPmFfRAxCuJN2WiCYJtvcvKOFX4--O8DGAa659LnQqE0gPkB-BWBKUj6m5kYOxq3RD9fq6riGaTwz9PdveLBd9x2wtDd7mWUEfA4RZo6t964Y1glEl71l4lFY_netI3ZLUAQWHnPBJ9DRRIYXX48juvFiJcJZPOMI8Uz9mpfCoXTrhBWWWAuAxjZIj6-4tTv7nf_u0jIcgEjwInc9NE0tlUChQhfz9HY0wuI90Vb847V2g8kum1B8&x-client-SKU=ID_NET&x-client-ver=2.1.4.0) - ModelState is Valid
info: Microsoft.AspNetCore.Mvc.ViewFeatures.Internal.ViewResultExecutor[1]
Executing ViewResult, running view at path /Views/Account/Login.cshtml.
info: Microsoft.AspNetCore.Mvc.Internal.ControllerActionInvoker[2]
Executed action IdentityServer4.Quickstart.UI.AccountController.Login (api-authentication) in 9.133ms
info: Microsoft.AspNetCore.Hosting.Internal.WebHost[2]
Request finished in 10.145ms 200 text/html; charset=utf-8
info: Microsoft.AspNetCore.Hosting.Internal.WebHost[1]
Request starting HTTP/1.1 POST http://localhost:5000/account/login?returnUrl=%2Fconnect%2Fauthorize%2Fcallback%3Fclient_id%3Dmvc%26redirect_uri%3Dhttp%253A%252F%252Flocalhost%253A5002%252Fsignin-oidc%26response_type%3Did_token%26scope%3Dopenid%2520profile%26response_mode%3Dform_post%26nonce%3D636622704942678057.MDBkZDA4OTgtZWUwNS00MTdhLWEzZDgtN2U0Y2Y0ZTIyYmM3MmE1NzYxYjctMTlkOS00MDE4LTg0OTYtODlhYjc3YzMyZmFm%26state%3DCfDJ8IAtEQoMrwNNnIvZApFa6ULcoIi1u9uRbyzwL0BAMWK2MvcXHDO6dCMCh1KY_gN-yQZfuqOVwKoZOPmILS0-0oZiFyTgpR_cGSmPmFfRAxCuJN2WiCYJtvcvKOFX4--O8DGAa659LnQqE0gPkB-BWBKUj6m5kYOxq3RD9fq6riGaTwz9PdveLBd9x2wtDd7mWUEfA4RZo6t964Y1glEl71l4lFY_netI3ZLUAQWHnPBJ9DRRIYXX48juvFiJcJZPOMI8Uz9mpfCoXTrhBWWWAuAxjZIj6-4tTv7nf_u0jIcgEjwInc9NE0tlUChQhfz9HY0wuI90Vb847V2g8kum1B8%26x-client-SKU%3DID_NET%26x-client-ver%3D2.1.4.0 application/x-www-form-urlencoded 993
info: Microsoft.AspNetCore.Mvc.ViewFeatures.Internal.ValidateAntiforgeryTokenAuthorizationFilter[1]
Antiforgery token validation failed. The antiforgery cookie token and request token do not match.
Microsoft.AspNetCore.Antiforgery.AntiforgeryValidationException: The antiforgery cookie token and request token do not match.
at Microsoft.AspNetCore.Antiforgery.Internal.DefaultAntiforgery.ValidateTokens(HttpContext httpContext, AntiforgeryTokenSet antiforgeryTokenSet)
at Microsoft.AspNetCore.Antiforgery.Internal.DefaultAntiforgery.d__9.MoveNext()
--- End of stack trace from previous location where exception was thrown ---
at System.Runtime.ExceptionServices.ExceptionDispatchInfo.Throw()
at System.Runtime.CompilerServices.TaskAwaiter.HandleNonSuccessAndDebuggerNotification(Task task)
at Microsoft.AspNetCore.Mvc.ViewFeatures.Internal.ValidateAntiforgeryTokenAuthorizationFilter.d__3.MoveNext()
info: Microsoft.AspNetCore.Mvc.Internal.ControllerActionInvoker[3]
Authorization failed for the request at filter 'Microsoft.AspNetCore.Mvc.ViewFeatures.Internal.ValidateAntiforgeryTokenAuthorizationFilter'.
info: Microsoft.AspNetCore.Mvc.StatusCodeResult[1]
Executing HttpStatusCodeResult, setting HTTP status code 400
info: Microsoft.AspNetCore.Mvc.Internal.ControllerActionInvoker[2]
Executed action IdentityServer4.Quickstart.UI.AccountController.Login (api-authentication) in 15.099ms
info: Microsoft.AspNetCore.Hosting.Internal.WebHost[2]
Request finished in 22.747ms 400
Application is shutting down...
⚡ vikra@LAPTOP-1F31KEBP  C..\api-authentication\identity-server   master ≣ ~1 -0 !  dotnet run
info: Microsoft.AspNetCore.DataProtection.KeyManagement.XmlKeyManager[0]
User profile is available. Using 'C:\Users\vikra\AppData\Local\ASP.NET\DataProtection-Keys' as key repository and Windows DPAPI to encrypt keys at
rest.
info: IdentityServer4.Startup[0]
You are using the in-memory version of the persisted grant store. This will store consent decisions, authorization codes, refresh and reference tokens in memory only. If you are using any of those features in production, you want to switch to a different store implementation.
Hosting environment: Production
Content root path: C:\code\api-authentication\identity-server
Now listening on: http://localhost:5000
Application started. Press Ctrl+C to shut down.
info: Microsoft.AspNetCore.Hosting.Internal.WebHost[1]
Request starting HTTP/1.1 GET http://localhost:5000/connect/authorize?client_id=mvc&redirect_uri=http%3A%2F%2Flocalhost%3A5002%2Fsignin-oidc&response_type=id_token&scope=openid%20profile&response_mode=form_post&nonce=636622724950684428.Zjc2ZGZmYzItZDVhMi00NWE1LWFmMTMtOGZmZmRkMzNlYTIzMDI4ODIyMjYtOTNjNC00MDk0LWFiMjUtNzg1YTcxZDM2M2E0&state=CfDJ8IAtEQoMrwNNnIvZApFa6UI9IP9U8Q0-05XlqDC10pwSeK8FvePANdiUw9kyAFxqHwSaivd1HlJm4YTTzgh_qqpNvAksFjX1OOvptukZzdvvxcogsBpELjI5PFs2LUaMx305UnC-hT4tT1Ag2S0I64DsBmtZXEYdJyZd2gxEJg3bFHOKpBKLV1TYIeyyxKz6wxHQ-039OIas6w4Pw6aAQ53GLb-1wufhpYD3UEjgO0Z8BLyq0cCd8oa8ksA44_d3gw8yYkvPpoCPpAhunjll3d0C6tvx3_-zjwLNzNutipG_eAEZJSkU5PrsyskBMEh3B6a8IMn_aoom2VOjySd-rJE&x-client-SKU=ID_NET&x-client-ver=2.1.4.0
info: IdentityServer4.Hosting.IdentityServerMiddleware[0]
Invoking IdentityServer endpoint: IdentityServer4.Endpoints.AuthorizeEndpoint for /connect/authorize
info: IdentityServer4.Endpoints.AuthorizeEndpoint[0]
ValidatedAuthorizeRequest
{
"ClientId": "mvc",
"ClientName": "MVC Client",
"RedirectUri": "http://localhost:5002/signin-oidc",
"AllowedRedirectUris": [
"http://localhost:5002/signin-oidc"
],
"SubjectId": "anonymous",
"ResponseType": "id_token",
"ResponseMode": "form_post",
"GrantType": "implicit",
"RequestedScopes": "openid profile",
"State": "CfDJ8IAtEQoMrwNNnIvZApFa6UI9IP9U8Q0-05XlqDC10pwSeK8FvePANdiUw9kyAFxqHwSaivd1HlJm4YTTzgh_qqpNvAksFjX1OOvptukZzdvvxcogsBpELjI5PFs2LUaMx305UnC-hT4tT1Ag2S0I64DsBmtZXEYdJyZd2gxEJg3bFHOKpBKLV1TYIeyyxKz6wxHQ-039OIas6w4Pw6aAQ53GLb-1wufhpYD3UEjgO0Z8BLyq0cCd8oa8ksA44_d3gw8yYkvPpoCPpAhunjll3d0C6tvx3_-zjwLNzNutipG_eAEZJSkU5PrsyskBMEh3B6a8IMn_aoom2VOjySd-rJE",
"Nonce": "636622724950684428.Zjc2ZGZmYzItZDVhMi00NWE1LWFmMTMtOGZmZmRkMzNlYTIzMDI4ODIyMjYtOTNjNC00MDk0LWFiMjUtNzg1YTcxZDM2M2E0",
"Raw": {
"client_id": "mvc",
"redirect_uri": "http://localhost:5002/signin-oidc",
"response_type": "id_token",
"scope": "openid profile",
"response_mode": "form_post",
"nonce": "636622724950684428.Zjc2ZGZmYzItZDVhMi00NWE1LWFmMTMtOGZmZmRkMzNlYTIzMDI4ODIyMjYtOTNjNC00MDk0LWFiMjUtNzg1YTcxZDM2M2E0",
"state": "CfDJ8IAtEQoMrwNNnIvZApFa6UI9IP9U8Q0-05XlqDC10pwSeK8FvePANdiUw9kyAFxqHwSaivd1HlJm4YTTzgh_qqpNvAksFjX1OOvptukZzdvvxcogsBpELjI5PFs2LUaMx305UnC-hT4tT1Ag2S0I64DsBmtZXEYdJyZd2gxEJg3bFHOKpBKLV1TYIeyyxKz6wxHQ-039OIas6w4Pw6aAQ53GLb-1wufhpYD3UEjgO0Z8BLyq0cCd8oa8ksA44_d3gw8yYkvPpoCPpAhunjll3d0C6tvx3_-zjwLNzNutipG_eAEZJSkU5PrsyskBMEh3B6a8IMn_aoom2VOjySd-rJE",
"x-client-SKU": "ID_NET",
"x-client-ver": "2.1.4.0"
}
}
info: IdentityServer4.ResponseHandling.AuthorizeInteractionResponseGenerator[0]
Showing login: User is not authenticated
info: Microsoft.AspNetCore.Hosting.Internal.WebHost[2]
Request finished in 296.9175ms 302
info: Microsoft.AspNetCore.Hosting.Internal.WebHost[1]
Request starting HTTP/1.1 GET http://localhost:5000/account/login?returnUrl=%2Fconnect%2Fauthorize%2Fcallback%3Fclient_id%3Dmvc%26redirect_uri%3Dhttp%253A%252F%252Flocalhost%253A5002%252Fsignin-oidc%26response_type%3Did_token%26scope%3Dopenid%2520profile%26response_mode%3Dform_post%26nonce%3D636622724950684428.Zjc2ZGZmYzItZDVhMi00NWE1LWFmMTMtOGZmZmRkMzNlYTIzMDI4ODIyMjYtOTNjNC00MDk0LWFiMjUtNzg1YTcxZDM2M2E0%26state%3DCfDJ8IAtEQoMrwNNnIvZApFa6UI9IP9U8Q0-05XlqDC10pwSeK8FvePANdiUw9kyAFxqHwSaivd1HlJm4YTTzgh_qqpNvAksFjX1OOvptukZzdvvxcogsBpELjI5PFs2LUaMx305UnC-hT4tT1Ag2S0I64DsBmtZXEYdJyZd2gxEJg3bFHOKpBKLV1TYIeyyxKz6wxHQ-039OIas6w4Pw6aAQ53GLb-1wufhpYD3UEjgO0Z8BLyq0cCd8oa8ksA44_d3gw8yYkvPpoCPpAhunjll3d0C6tvx3_-zjwLNzNutipG_eAEZJSkU5PrsyskBMEh3B6a8IMn_aoom2VOjySd-rJE%26x-client-SKU%3DID_NET%26x-client-ver%3D2.1.4.0
info: Microsoft.AspNetCore.Mvc.Internal.ControllerActionInvoker[1]
Executing action method IdentityServer4.Quickstart.UI.AccountController.Login (api-authentication) with arguments (/connect/authorize/callback?client_id=mvc&redirect_uri=http%3A%2F%2Flocalhost%3A5002%2Fsignin-oidc&response_type=id_token&scope=openid%20profile&response_mode=form_post&nonce=636622724950684428.Zjc2ZGZmYzItZDVhMi00NWE1LWFmMTMtOGZmZmRkMzNlYTIzMDI4ODIyMjYtOTNjNC00MDk0LWFiMjUtNzg1YTcxZDM2M2E0&state=CfDJ8IAtEQoMrwNNnIvZApFa6UI9IP9U8Q0-05XlqDC10pwSeK8FvePANdiUw9kyAFxqHwSaivd1HlJm4YTTzgh_qqpNvAksFjX1OOvptukZzdvvxcogsBpELjI5PFs2LUaMx305UnC-hT4tT1Ag2S0I64DsBmtZXEYdJyZd2gxEJg3bFHOKpBKLV1TYIeyyxKz6wxHQ-039OIas6w4Pw6aAQ53GLb-1wufhpYD3UEjgO0Z8BLyq0cCd8oa8ksA44_d3gw8yYkvPpoCPpAhunjll3d0C6tvx3_-zjwLNzNutipG_eAEZJSkU5PrsyskBMEh3B6a8IMn_aoom2VOjySd-rJE&x-client-SKU=ID_NET&x-client-ver=2.1.4.0) - ModelState is Valid
info: Microsoft.AspNetCore.Mvc.ViewFeatures.Internal.ViewResultExecutor[1]
Executing ViewResult, running view at path /Views/Account/Login.cshtml.
info: Microsoft.AspNetCore.Mvc.Internal.ControllerActionInvoker[2]
Executed action IdentityServer4.Quickstart.UI.AccountController.Login (api-authentication) in 3247.5875ms
info: Microsoft.AspNetCore.Hosting.Internal.WebHost[2]
Request finished in 3375.5726ms 200 text/html; charset=utf-8
info: Microsoft.AspNetCore.Hosting.Internal.WebHost[1]
Request starting HTTP/1.1 GET http://localhost:5000/lib/bootstrap/css/bootstrap.css
info: Microsoft.AspNetCore.Hosting.Internal.WebHost[1]
Request starting HTTP/1.1 GET http://localhost:5000/css/site.css
info: Microsoft.AspNetCore.StaticFiles.StaticFileMiddleware[6]
The file /css/site.css was not modified
info: Microsoft.AspNetCore.StaticFiles.StaticFileMiddleware[6]
The file /lib/bootstrap/css/bootstrap.css was not modified
info: Microsoft.AspNetCore.Hosting.Internal.WebHost[2]
Request finished in 8.5038ms 304 text/css
info: Microsoft.AspNetCore.Hosting.Internal.WebHost[2]
Request finished in 8.8278ms 304 text/css
info: Microsoft.AspNetCore.Hosting.Internal.WebHost[1]
Request starting HTTP/1.1 GET http://localhost:5000/lib/jquery/jquery.js
info: Microsoft.AspNetCore.StaticFiles.StaticFileMiddleware[6]
The file /lib/jquery/jquery.js was not modified
info: Microsoft.AspNetCore.Hosting.Internal.WebHost[2]
Request finished in 0.8785ms 304 application/javascript
info: Microsoft.AspNetCore.Hosting.Internal.WebHost[1]
Request starting HTTP/1.1 GET http://localhost:5000/lib/bootstrap/js/bootstrap.js
info: Microsoft.AspNetCore.StaticFiles.StaticFileMiddleware[6]
The file /lib/bootstrap/js/bootstrap.js was not modified
info: Microsoft.AspNetCore.Hosting.Internal.WebHost[2]
Request finished in 6.441ms 304 application/javascript
info: Microsoft.AspNetCore.Hosting.Internal.WebHost[1]
Request starting HTTP/1.1 GET http://localhost:5000/icon.png
info: Microsoft.AspNetCore.StaticFiles.StaticFileMiddleware[6]
The file /icon.png was not modified
info: Microsoft.AspNetCore.Hosting.Internal.WebHost[2]
Request finished in 2.7679ms 304 image/png
info: Microsoft.AspNetCore.Hosting.Internal.WebHost[1]
Request starting HTTP/1.1 GET http://localhost:5000/account/login?returnUrl=%2Fconnect%2Fauthorize%2Fcallback%3Fclient_id%3Dmvc%26redirect_uri%3Dhttp%253A%252F%252Flocalhost%253A5002%252Fsignin-oidc%26response_type%3Did_token%26scope%3Dopenid%2520profile%26response_mode%3Dform_post%26nonce%3D636622724950684428.Zjc2ZGZmYzItZDVhMi00NWE1LWFmMTMtOGZmZmRkMzNlYTIzMDI4ODIyMjYtOTNjNC00MDk0LWFiMjUtNzg1YTcxZDM2M2E0%26state%3DCfDJ8IAtEQoMrwNNnIvZApFa6UI9IP9U8Q0-05XlqDC10pwSeK8FvePANdiUw9kyAFxqHwSaivd1HlJm4YTTzgh_qqpNvAksFjX1OOvptukZzdvvxcogsBpELjI5PFs2LUaMx305UnC-hT4tT1Ag2S0I64DsBmtZXEYdJyZd2gxEJg3bFHOKpBKLV1TYIeyyxKz6wxHQ-039OIas6w4Pw6aAQ53GLb-1wufhpYD3UEjgO0Z8BLyq0cCd8oa8ksA44_d3gw8yYkvPpoCPpAhunjll3d0C6tvx3_-zjwLNzNutipG_eAEZJSkU5PrsyskBMEh3B6a8IMn_aoom2VOjySd-rJE%26x-client-SKU%3DID_NET%26x-client-ver%3D2.1.4.0&_=1526675699221
info: Microsoft.AspNetCore.Mvc.Internal.ControllerActionInvoker[1]
Executing action method IdentityServer4.Quickstart.UI.AccountController.Login (api-authentication) with arguments (/connect/authorize/callback?client_id=mvc&redirect_uri=http%3A%2F%2Flocalhost%3A5002%2Fsignin-oidc&response_type=id_token&scope=openid%20profile&response_mode=form_post&nonce=636622724950684428.Zjc2ZGZmYzItZDVhMi00NWE1LWFmMTMtOGZmZmRkMzNlYTIzMDI4ODIyMjYtOTNjNC00MDk0LWFiMjUtNzg1YTcxZDM2M2E0&state=CfDJ8IAtEQoMrwNNnIvZApFa6UI9IP9U8Q0-05XlqDC10pwSeK8FvePANdiUw9kyAFxqHwSaivd1HlJm4YTTzgh_qqpNvAksFjX1OOvptukZzdvvxcogsBpELjI5PFs2LUaMx305UnC-hT4tT1Ag2S0I64DsBmtZXEYdJyZd2gxEJg3bFHOKpBKLV1TYIeyyxKz6wxHQ-039OIas6w4Pw6aAQ53GLb-1wufhpYD3UEjgO0Z8BLyq0cCd8oa8ksA44_d3gw8yYkvPpoCPpAhunjll3d0C6tvx3_-zjwLNzNutipG_eAEZJSkU5PrsyskBMEh3B6a8IMn_aoom2VOjySd-rJE&x-client-SKU=ID_NET&x-client-ver=2.1.4.0) - ModelState is Valid
info: Microsoft.AspNetCore.Mvc.ViewFeatures.Internal.ViewResultExecutor[1]
Executing ViewResult, running view at path /Views/Account/Login.cshtml.
info: Microsoft.AspNetCore.Mvc.Internal.ControllerActionInvoker[2]
Executed action IdentityServer4.Quickstart.UI.AccountController.Login (api-authentication) in 11.0328ms
info: Microsoft.AspNetCore.Hosting.Internal.WebHost[2]
Request finished in 13.8327ms 200 text/html; charset=utf-8
info: Microsoft.AspNetCore.Hosting.Internal.WebHost[1]
Request starting HTTP/1.1 POST http://localhost:5000/account/login?returnUrl=%2Fconnect%2Fauthorize%2Fcallback%3Fclient_id%3Dmvc%26redirect_uri%3Dhttp%253A%252F%252Flocalhost%253A5002%252Fsignin-oidc%26response_type%3Did_token%26scope%3Dopenid%2520profile%26response_mode%3Dform_post%26nonce%3D636622724950684428.Zjc2ZGZmYzItZDVhMi00NWE1LWFmMTMtOGZmZmRkMzNlYTIzMDI4ODIyMjYtOTNjNC00MDk0LWFiMjUtNzg1YTcxZDM2M2E0%26state%3DCfDJ8IAtEQoMrwNNnIvZApFa6UI9IP9U8Q0-05XlqDC10pwSeK8FvePANdiUw9kyAFxqHwSaivd1HlJm4YTTzgh_qqpNvAksFjX1OOvptukZzdvvxcogsBpELjI5PFs2LUaMx305UnC-hT4tT1Ag2S0I64DsBmtZXEYdJyZd2gxEJg3bFHOKpBKLV1TYIeyyxKz6wxHQ-039OIas6w4Pw6aAQ53GLb-1wufhpYD3UEjgO0Z8BLyq0cCd8oa8ksA44_d3gw8yYkvPpoCPpAhunjll3d0C6tvx3_-zjwLNzNutipG_eAEZJSkU5PrsyskBMEh3B6a8IMn_aoom2VOjySd-rJE%26x-client-SKU%3DID_NET%26x-client-ver%3D2.1.4.0 application/x-www-form-urlencoded 993
info: Microsoft.AspNetCore.Mvc.ViewFeatures.Internal.ValidateAntiforgeryTokenAuthorizationFilter[1]
Antiforgery token validation failed. The antiforgery cookie token and request token do not match.
Microsoft.AspNetCore.Antiforgery.AntiforgeryValidationException: The antiforgery cookie token and request token do not match.
at Microsoft.AspNetCore.Antiforgery.Internal.DefaultAntiforgery.ValidateTokens(HttpContext httpContext, AntiforgeryTokenSet antiforgeryTokenSet)
at Microsoft.AspNetCore.Antiforgery.Internal.DefaultAntiforgery.d__9.MoveNext()
--- End of stack trace from previous location where exception was thrown ---
at System.Runtime.ExceptionServices.ExceptionDispatchInfo.Throw()
at System.Runtime.CompilerServices.TaskAwaiter.HandleNonSuccessAndDebuggerNotification(Task task)
at Microsoft.AspNetCore.Mvc.ViewFeatures.Internal.ValidateAntiforgeryTokenAuthorizationFilter.d__3.MoveNext()
info: Microsoft.AspNetCore.Mvc.Internal.ControllerActionInvoker[3]
Authorization failed for the request at filter 'Microsoft.AspNetCore.Mvc.ViewFeatures.Internal.ValidateAntiforgeryTokenAuthorizationFilter'.
info: Microsoft.AspNetCore.Mvc.StatusCodeResult[1]
Executing HttpStatusCodeResult, setting HTTP status code 400
info: Microsoft.AspNetCore.Mvc.Internal.ControllerActionInvoker[2]
Executed action IdentityServer4.Quickstart.UI.AccountController.Login (api-authentication) in 44.6006ms
info: Microsoft.AspNetCore.Hosting.Internal.WebHost[2]
Request finished in 68.4549ms 400
info: Microsoft.AspNetCore.Hosting.Internal.WebHost[1]
Request starting HTTP/1.1 GET http://localhost:5000/account/login?returnUrl=%2Fconnect%2Fauthorize%2Fcallback%3Fclient_id%3Dmvc%26redirect_uri%3Dhttp%253A%252F%252Flocalhost%253A5002%252Fsignin-oidc%26response_type%3Did_token%26scope%3Dopenid%2520profile%26response_mode%3Dform_post%26nonce%3D636622724950684428.Zjc2ZGZmYzItZDVhMi00NWE1LWFmMTMtOGZmZmRkMzNlYTIzMDI4ODIyMjYtOTNjNC00MDk0LWFiMjUtNzg1YTcxZDM2M2E0%26state%3DCfDJ8IAtEQoMrwNNnIvZApFa6UI9IP9U8Q0-05XlqDC10pwSeK8FvePANdiUw9kyAFxqHwSaivd1HlJm4YTTzgh_qqpNvAksFjX1OOvptukZzdvvxcogsBpELjI5PFs2LUaMx305UnC-hT4tT1Ag2S0I64DsBmtZXEYdJyZd2gxEJg3bFHOKpBKLV1TYIeyyxKz6wxHQ-039OIas6w4Pw6aAQ53GLb-1wufhpYD3UEjgO0Z8BLyq0cCd8oa8ksA44_d3gw8yYkvPpoCPpAhunjll3d0C6tvx3_-zjwLNzNutipG_eAEZJSkU5PrsyskBMEh3B6a8IMn_aoom2VOjySd-rJE%26x-client-SKU%3DID_NET%26x-client-ver%3D2.1.4.0
info: Microsoft.AspNetCore.Mvc.Internal.ControllerActionInvoker[1]
Executing action method IdentityServer4.Quickstart.UI.AccountController.Login (api-authentication) with arguments (/connect/authorize/callback?client_id=mvc&redirect_uri=http%3A%2F%2Flocalhost%3A5002%2Fsignin-oidc&response_type=id_token&scope=openid%20profile&response_mode=form_post&nonce=636622724950684428.Zjc2ZGZmYzItZDVhMi00NWE1LWFmMTMtOGZmZmRkMzNlYTIzMDI4ODIyMjYtOTNjNC00MDk0LWFiMjUtNzg1YTcxZDM2M2E0&state=CfDJ8IAtEQoMrwNNnIvZApFa6UI9IP9U8Q0-05XlqDC10pwSeK8FvePANdiUw9kyAFxqHwSaivd1HlJm4YTTzgh_qqpNvAksFjX1OOvptukZzdvvxcogsBpELjI5PFs2LUaMx305UnC-hT4tT1Ag2S0I64DsBmtZXEYdJyZd2gxEJg3bFHOKpBKLV1TYIeyyxKz6wxHQ-039OIas6w4Pw6aAQ53GLb-1wufhpYD3UEjgO0Z8BLyq0cCd8oa8ksA44_d3gw8yYkvPpoCPpAhunjll3d0C6tvx3_-zjwLNzNutipG_eAEZJSkU5PrsyskBMEh3B6a8IMn_aoom2VOjySd-rJE&x-client-SKU=ID_NET&x-client-ver=2.1.4.0) - ModelState is Valid
info: Microsoft.AspNetCore.Mvc.ViewFeatures.Internal.ViewResultExecutor[1]
Executing ViewResult, running view at path /Views/Account/Login.cshtml.
info: Microsoft.AspNetCore.Mvc.Internal.ControllerActionInvoker[2]
Executed action IdentityServer4.Quickstart.UI.AccountController.Login (api-authentication) in 2.6807ms
info: Microsoft.AspNetCore.Hosting.Internal.WebHost[2]
Request finished in 3.3632ms 200 text/html; charset=utf-8
info: Microsoft.AspNetCore.Hosting.Internal.WebHost[1]
Request starting HTTP/1.1 GET http://localhost:5000/account/login?returnUrl=%2Fconnect%2Fauthorize%2Fcallback%3Fclient_id%3Dmvc%26redirect_uri%3Dhttp%253A%252F%252Flocalhost%253A5002%252Fsignin-oidc%26response_type%3Did_token%26scope%3Dopenid%2520profile%26response_mode%3Dform_post%26nonce%3D636622724950684428.Zjc2ZGZmYzItZDVhMi00NWE1LWFmMTMtOGZmZmRkMzNlYTIzMDI4ODIyMjYtOTNjNC00MDk0LWFiMjUtNzg1YTcxZDM2M2E0%26state%3DCfDJ8IAtEQoMrwNNnIvZApFa6UI9IP9U8Q0-05XlqDC10pwSeK8FvePANdiUw9kyAFxqHwSaivd1HlJm4YTTzgh_qqpNvAksFjX1OOvptukZzdvvxcogsBpELjI5PFs2LUaMx305UnC-hT4tT1Ag2S0I64DsBmtZXEYdJyZd2gxEJg3bFHOKpBKLV1TYIeyyxKz6wxHQ-039OIas6w4Pw6aAQ53GLb-1wufhpYD3UEjgO0Z8BLyq0cCd8oa8ksA44_d3gw8yYkvPpoCPpAhunjll3d0C6tvx3_-zjwLNzNutipG_eAEZJSkU5PrsyskBMEh3B6a8IMn_aoom2VOjySd-rJE%26x-client-SKU%3DID_NET%26x-client-ver%3D2.1.4.0&_=1526675827474
info: Microsoft.AspNetCore.Mvc.Internal.ControllerActionInvoker[1]
Executing action method IdentityServer4.Quickstart.UI.AccountController.Login (api-authentication) with arguments (/connect/authorize/callback?client_id=mvc&redirect_uri=http%3A%2F%2Flocalhost%3A5002%2Fsignin-oidc&response_type=id_token&scope=openid%20profile&response_mode=form_post&nonce=636622724950684428.Zjc2ZGZmYzItZDVhMi00NWE1LWFmMTMtOGZmZmRkMzNlYTIzMDI4ODIyMjYtOTNjNC00MDk0LWFiMjUtNzg1YTcxZDM2M2E0&state=CfDJ8IAtEQoMrwNNnIvZApFa6UI9IP9U8Q0-05XlqDC10pwSeK8FvePANdiUw9kyAFxqHwSaivd1HlJm4YTTzgh_qqpNvAksFjX1OOvptukZzdvvxcogsBpELjI5PFs2LUaMx305UnC-hT4tT1Ag2S0I64DsBmtZXEYdJyZd2gxEJg3bFHOKpBKLV1TYIeyyxKz6wxHQ-039OIas6w4Pw6aAQ53GLb-1wufhpYD3UEjgO0Z8BLyq0cCd8oa8ksA44_d3gw8yYkvPpoCPpAhunjll3d0C6tvx3_-zjwLNzNutipG_eAEZJSkU5PrsyskBMEh3B6a8IMn_aoom2VOjySd-rJE&x-client-SKU=ID_NET&x-client-ver=2.1.4.0) - ModelState is Valid
info: Microsoft.AspNetCore.Mvc.ViewFeatures.Internal.ViewResultExecutor[1]
Executing ViewResult, running view at path /Views/Account/Login.cshtml.
info: Microsoft.AspNetCore.Mvc.Internal.ControllerActionInvoker[2]
Executed action IdentityServer4.Quickstart.UI.AccountController.Login (api-authentication) in 2.5326ms
info: Microsoft.AspNetCore.Hosting.Internal.WebHost[2]
Request finished in 2.8429ms 200 text/html; charset=utf-8
info: Microsoft.AspNetCore.Hosting.Internal.WebHost[1]
Request starting HTTP/1.1 POST http://localhost:5000/account/login?returnUrl=%2Fconnect%2Fauthorize%2Fcallback%3Fclient_id%3Dmvc%26redirect_uri%3Dhttp%253A%252F%252Flocalhost%253A5002%252Fsignin-oidc%26response_type%3Did_token%26scope%3Dopenid%2520profile%26response_mode%3Dform_post%26nonce%3D636622724950684428.Zjc2ZGZmYzItZDVhMi00NWE1LWFmMTMtOGZmZmRkMzNlYTIzMDI4ODIyMjYtOTNjNC00MDk0LWFiMjUtNzg1YTcxZDM2M2E0%26state%3DCfDJ8IAtEQoMrwNNnIvZApFa6UI9IP9U8Q0-05XlqDC10pwSeK8FvePANdiUw9kyAFxqHwSaivd1HlJm4YTTzgh_qqpNvAksFjX1OOvptukZzdvvxcogsBpELjI5PFs2LUaMx305UnC-hT4tT1Ag2S0I64DsBmtZXEYdJyZd2gxEJg3bFHOKpBKLV1TYIeyyxKz6wxHQ-039OIas6w4Pw6aAQ53GLb-1wufhpYD3UEjgO0Z8BLyq0cCd8oa8ksA44_d3gw8yYkvPpoCPpAhunjll3d0C6tvx3_-zjwLNzNutipG_eAEZJSkU5PrsyskBMEh3B6a8IMn_aoom2VOjySd-rJE%26x-client-SKU%3DID_NET%26x-client-ver%3D2.1.4.0 application/x-www-form-urlencoded 993
info: Microsoft.AspNetCore.Mvc.ViewFeatures.Internal.ValidateAntiforgeryTokenAuthorizationFilter[1]
Antiforgery token validation failed. The antiforgery cookie token and request token do not match.
Microsoft.AspNetCore.Antiforgery.AntiforgeryValidationException: The antiforgery cookie token and request token do not match.
at Microsoft.AspNetCore.Antiforgery.Internal.DefaultAntiforgery.ValidateTokens(HttpContext httpContext, AntiforgeryTokenSet antiforgeryTokenSet)
at Microsoft.AspNetCore.Antiforgery.Internal.DefaultAntiforgery.d__9.MoveNext()
--- End of stack trace from previous location where exception was thrown ---
at System.Runtime.ExceptionServices.ExceptionDispatchInfo.Throw()
at System.Runtime.CompilerServices.TaskAwaiter.HandleNonSuccessAndDebuggerNotification(Task task)
at Microsoft.AspNetCore.Mvc.ViewFeatures.Internal.ValidateAntiforgeryTokenAuthorizationFilter.d__3.MoveNext()
info: Microsoft.AspNetCore.Mvc.Internal.ControllerActionInvoker[3]
Authorization failed for the request at filter 'Microsoft.AspNetCore.Mvc.ViewFeatures.Internal.ValidateAntiforgeryTokenAuthorizationFilter'.
info: Microsoft.AspNetCore.Mvc.StatusCodeResult[1]
Executing HttpStatusCodeResult, setting HTTP status code 400
info: Microsoft.AspNetCore.Mvc.Internal.ControllerActionInvoker[2]
Executed action IdentityServer4.Quickstart.UI.AccountController.Login (api-authentication) in 6.1123ms
info: Microsoft.AspNetCore.Hosting.Internal.WebHost[2]
Request finished in 6.7975ms 400
info: Microsoft.AspNetCore.Hosting.Internal.WebHost[1]
Request starting HTTP/1.1 GET http://localhost:5000/.well-known/openid-configuration
info: IdentityServer4.Hosting.IdentityServerMiddleware[0]
Invoking IdentityServer endpoint: IdentityServer4.Endpoints.DiscoveryEndpoint for /.well-known/openid-configuration
info: Microsoft.AspNetCore.Hosting.Internal.WebHost[2]
Request finished in 105.8077ms 200 application/json; charset=UTF-8
info: Microsoft.AspNetCore.Hosting.Internal.WebHost[1]
Request starting HTTP/1.1 GET http://localhost:5000/.well-known/openid-configuration/jwks
info: IdentityServer4.Hosting.IdentityServerMiddleware[0]
Invoking IdentityServer endpoint: IdentityServer4.Endpoints.DiscoveryKeyEndpoint for /.well-known/openid-configuration/jwks
info: Microsoft.AspNetCore.Hosting.Internal.WebHost[2]
Request finished in 29.1529ms 200 application/json; charset=UTF-8
info: Microsoft.AspNetCore.Hosting.Internal.WebHost[1]
Request starting HTTP/1.1 GET http://localhost:5000/connect/authorize?client_id=mvc&redirect_uri=http%3A%2F%2Flocalhost%3A5002%2Fsignin-oidc&response_type=id_token&scope=openid%20profile&response_mode=form_post&nonce=636623363375579448.OTNmMzZlN2ItNjM1NS00ZWExLTgxNDktNTVhYTgxYTAzZTk4ZTg3OTY3ZjYtZTdiMS00M2JkLTljYTEtYjMyMmJhYTlkZjlm&state=CfDJ8IAtEQoMrwNNnIvZApFa6UJtt6OsCJvqlXYU7h44BzCZ-5LXRlrQFQ75DJMD2Q5Rqr4K_BClHmc-zoOAirrEt7t5W5rp3inNnxFSgN1Er3qHNdUKDEubm6cZJyO0H-RkHAkZm4EeAx6gDDF2820aHFR5obZMJZS306jFh5Bb3bVaWhF0CEDTIaEY8yFe_5SALi-As_CKtGt-fDQ-snvUk79epT1sZpmN1ELtAVXa-_Ep0nVozkAQZwRi1mXNATyWq-0ynpsiXEGmK2QLUK9DDB7FU3Q9x2XN0xgXUWWuduvicinEFAQaqAutwdiRfiSWm-XLRy7A0jGINSk_os_adXg&x-client-SKU=ID_NET&x-client-ver=2.1.4.0
info: IdentityServer4.Hosting.IdentityServerMiddleware[0]
Invoking IdentityServer endpoint: IdentityServer4.Endpoints.AuthorizeEndpoint for /connect/authorize
info: IdentityServer4.Endpoints.AuthorizeEndpoint[0]
ValidatedAuthorizeRequest
{
"ClientId": "mvc",
"ClientName": "MVC Client",
"RedirectUri": "http://localhost:5002/signin-oidc",
"AllowedRedirectUris": [
"http://localhost:5002/signin-oidc"
],
"SubjectId": "anonymous",
"ResponseType": "id_token",
"ResponseMode": "form_post",
"GrantType": "implicit",
"RequestedScopes": "openid profile",
"State": "CfDJ8IAtEQoMrwNNnIvZApFa6UJtt6OsCJvqlXYU7h44BzCZ-5LXRlrQFQ75DJMD2Q5Rqr4K_BClHmc-zoOAirrEt7t5W5rp3inNnxFSgN1Er3qHNdUKDEubm6cZJyO0H-RkHAkZm4EeAx6gDDF2820aHFR5obZMJZS306jFh5Bb3bVaWhF0CEDTIaEY8yFe_5SALi-As_CKtGt-fDQ-snvUk79epT1sZpmN1ELtAVXa-_Ep0nVozkAQZwRi1mXNATyWq-0ynpsiXEGmK2QLUK9DDB7FU3Q9x2XN0xgXUWWuduvicinEFAQaqAutwdiRfiSWm-XLRy7A0jGINSk_os_adXg",
"Nonce": "636623363375579448.OTNmMzZlN2ItNjM1NS00ZWExLTgxNDktNTVhYTgxYTAzZTk4ZTg3OTY3ZjYtZTdiMS00M2JkLTljYTEtYjMyMmJhYTlkZjlm",
"Raw": {
"client_id": "mvc",
"redirect_uri": "http://localhost:5002/signin-oidc",
"response_type": "id_token",
"scope": "openid profile",
"response_mode": "form_post",
"nonce": "636623363375579448.OTNmMzZlN2ItNjM1NS00ZWExLTgxNDktNTVhYTgxYTAzZTk4ZTg3OTY3ZjYtZTdiMS00M2JkLTljYTEtYjMyMmJhYTlkZjlm",
"state": "CfDJ8IAtEQoMrwNNnIvZApFa6UJtt6OsCJvqlXYU7h44BzCZ-5LXRlrQFQ75DJMD2Q5Rqr4K_BClHmc-zoOAirrEt7t5W5rp3inNnxFSgN1Er3qHNdUKDEubm6cZJyO0H-RkHAkZm4EeAx6gDDF2820aHFR5obZMJZS306jFh5Bb3bVaWhF0CEDTIaEY8yFe_5SALi-As_CKtGt-fDQ-snvUk79epT1sZpmN1ELtAVXa-_Ep0nVozkAQZwRi1mXNATyWq-0ynpsiXEGmK2QLUK9DDB7FU3Q9x2XN0xgXUWWuduvicinEFAQaqAutwdiRfiSWm-XLRy7A0jGINSk_os_adXg",
"x-client-SKU": "ID_NET",
"x-client-ver": "2.1.4.0"
}
}
info: IdentityServer4.ResponseHandling.AuthorizeInteractionResponseGenerator[0]
Showing login: User is not authenticated
info: Microsoft.AspNetCore.Hosting.Internal.WebHost[2]
Request finished in 2.1539ms 302
info: Microsoft.AspNetCore.Hosting.Internal.WebHost[1]
Request starting HTTP/1.1 GET http://localhost:5000/account/login?returnUrl=%2Fconnect%2Fauthorize%2Fcallback%3Fclient_id%3Dmvc%26redirect_uri%3Dhttp%253A%252F%252Flocalhost%253A5002%252Fsignin-oidc%26response_type%3Did_token%26scope%3Dopenid%2520profile%26response_mode%3Dform_post%26nonce%3D636623363375579448.OTNmMzZlN2ItNjM1NS00ZWExLTgxNDktNTVhYTgxYTAzZTk4ZTg3OTY3ZjYtZTdiMS00M2JkLTljYTEtYjMyMmJhYTlkZjlm%26state%3DCfDJ8IAtEQoMrwNNnIvZApFa6UJtt6OsCJvqlXYU7h44BzCZ-5LXRlrQFQ75DJMD2Q5Rqr4K_BClHmc-zoOAirrEt7t5W5rp3inNnxFSgN1Er3qHNdUKDEubm6cZJyO0H-RkHAkZm4EeAx6gDDF2820aHFR5obZMJZS306jFh5Bb3bVaWhF0CEDTIaEY8yFe_5SALi-As_CKtGt-fDQ-snvUk79epT1sZpmN1ELtAVXa-_Ep0nVozkAQZwRi1mXNATyWq-0ynpsiXEGmK2QLUK9DDB7FU3Q9x2XN0xgXUWWuduvicinEFAQaqAutwdiRfiSWm-XLRy7A0jGINSk_os_adXg%26x-client-SKU%3DID_NET%26x-client-ver%3D2.1.4.0
info: Microsoft.AspNetCore.Mvc.Internal.ControllerActionInvoker[1]
Executing action method IdentityServer4.Quickstart.UI.AccountController.Login (api-authentication) with arguments (/connect/authorize/callback?client_id=mvc&redirect_uri=http%3A%2F%2Flocalhost%3A5002%2Fsignin-oidc&response_type=id_token&scope=openid%20profile&response_mode=form_post&nonce=636623363375579448.OTNmMzZlN2ItNjM1NS00ZWExLTgxNDktNTVhYTgxYTAzZTk4ZTg3OTY3ZjYtZTdiMS00M2JkLTljYTEtYjMyMmJhYTlkZjlm&state=CfDJ8IAtEQoMrwNNnIvZApFa6UJtt6OsCJvqlXYU7h44BzCZ-5LXRlrQFQ75DJMD2Q5Rqr4K_BClHmc-zoOAirrEt7t5W5rp3inNnxFSgN1Er3qHNdUKDEubm6cZJyO0H-RkHAkZm4EeAx6gDDF2820aHFR5obZMJZS306jFh5Bb3bVaWhF0CEDTIaEY8yFe_5SALi-As_CKtGt-fDQ-snvUk79epT1sZpmN1ELtAVXa-_Ep0nVozkAQZwRi1mXNATyWq-0ynpsiXEGmK2QLUK9DDB7FU3Q9x2XN0xgXUWWuduvicinEFAQaqAutwdiRfiSWm-XLRy7A0jGINSk_os_adXg&x-client-SKU=ID_NET&x-client-ver=2.1.4.0) - ModelState is Valid
info: Microsoft.AspNetCore.Mvc.ViewFeatures.Internal.ViewResultExecutor[1]
Executing ViewResult, running view at path /Views/Account/Login.cshtml.
info: Microsoft.AspNetCore.Mvc.Internal.ControllerActionInvoker[2]
Executed action IdentityServer4.Quickstart.UI.AccountController.Login (api-authentication) in 9.6498ms
info: Microsoft.AspNetCore.Hosting.Internal.WebHost[2]
Request finished in 10.4663ms 200 text/html; charset=utf-8
info: Microsoft.AspNetCore.Hosting.Internal.WebHost[1]
Request starting HTTP/1.1 GET http://localhost:5000/lib/bootstrap/css/bootstrap.css
info: Microsoft.AspNetCore.StaticFiles.StaticFileMiddleware[6]
The file /lib/bootstrap/css/bootstrap.css was not modified
info: Microsoft.AspNetCore.Hosting.Internal.WebHost[2]
Request finished in 1.0789ms 304 text/css
info: Microsoft.AspNetCore.Hosting.Internal.WebHost[1]
Request starting HTTP/1.1 GET http://localhost:5000/css/site.css
info: Microsoft.AspNetCore.StaticFiles.StaticFileMiddleware[6]
The file /css/site.css was not modified
info: Microsoft.AspNetCore.Hosting.Internal.WebHost[2]
Request finished in 2.3906ms 304 text/css
info: Microsoft.AspNetCore.Hosting.Internal.WebHost[1]
Request starting HTTP/1.1 GET http://localhost:5000/lib/jquery/jquery.js
info: Microsoft.AspNetCore.StaticFiles.StaticFileMiddleware[6]
The file /lib/jquery/jquery.js was not modified
info: Microsoft.AspNetCore.Hosting.Internal.WebHost[2]
Request finished in 11.5047ms 304 application/javascript
info: Microsoft.AspNetCore.Hosting.Internal.WebHost[1]
Request starting HTTP/1.1 GET http://localhost:5000/lib/bootstrap/js/bootstrap.js
info: Microsoft.AspNetCore.StaticFiles.StaticFileMiddleware[6]
The file /lib/bootstrap/js/bootstrap.js was not modified
info: Microsoft.AspNetCore.Hosting.Internal.WebHost[2]
Request finished in 4.5874ms 304 application/javascript
info: Microsoft.AspNetCore.Hosting.Internal.WebHost[1]
Request starting HTTP/1.1 GET http://localhost:5000/icon.png
info: Microsoft.AspNetCore.StaticFiles.StaticFileMiddleware[6]
The file /icon.png was not modified
info: Microsoft.AspNetCore.Hosting.Internal.WebHost[2]
Request finished in 0.853ms 304 image/png
info: Microsoft.AspNetCore.Hosting.Internal.WebHost[1]
Request starting HTTP/1.1 GET http://localhost:5000/account/login?returnUrl=%2Fconnect%2Fauthorize%2Fcallback%3Fclient_id%3Dmvc%26redirect_uri%3Dhttp%253A%252F%252Flocalhost%253A5002%252Fsignin-oidc%26response_type%3Did_token%26scope%3Dopenid%2520profile%26response_mode%3Dform_post%26nonce%3D636623363375579448.OTNmMzZlN2ItNjM1NS00ZWExLTgxNDktNTVhYTgxYTAzZTk4ZTg3OTY3ZjYtZTdiMS00M2JkLTljYTEtYjMyMmJhYTlkZjlm%26state%3DCfDJ8IAtEQoMrwNNnIvZApFa6UJtt6OsCJvqlXYU7h44BzCZ-5LXRlrQFQ75DJMD2Q5Rqr4K_BClHmc-zoOAirrEt7t5W5rp3inNnxFSgN1Er3qHNdUKDEubm6cZJyO0H-RkHAkZm4EeAx6gDDF2820aHFR5obZMJZS306jFh5Bb3bVaWhF0CEDTIaEY8yFe_5SALi-As_CKtGt-fDQ-snvUk79epT1sZpmN1ELtAVXa-_Ep0nVozkAQZwRi1mXNATyWq-0ynpsiXEGmK2QLUK9DDB7FU3Q9x2XN0xgXUWWuduvicinEFAQaqAutwdiRfiSWm-XLRy7A0jGINSk_os_adXg%26x-client-SKU%3DID_NET%26x-client-ver%3D2.1.4.0&_=1526739537874
info: Microsoft.AspNetCore.Mvc.Internal.ControllerActionInvoker[1]
Executing action method IdentityServer4.Quickstart.UI.AccountController.Login (api-authentication) with arguments (/connect/authorize/callback?client_id=mvc&redirect_uri=http%3A%2F%2Flocalhost%3A5002%2Fsignin-oidc&response_type=id_token&scope=openid%20profile&response_mode=form_post&nonce=636623363375579448.OTNmMzZlN2ItNjM1NS00ZWExLTgxNDktNTVhYTgxYTAzZTk4ZTg3OTY3ZjYtZTdiMS00M2JkLTljYTEtYjMyMmJhYTlkZjlm&state=CfDJ8IAtEQoMrwNNnIvZApFa6UJtt6OsCJvqlXYU7h44BzCZ-5LXRlrQFQ75DJMD2Q5Rqr4K_BClHmc-zoOAirrEt7t5W5rp3inNnxFSgN1Er3qHNdUKDEubm6cZJyO0H-RkHAkZm4EeAx6gDDF2820aHFR5obZMJZS306jFh5Bb3bVaWhF0CEDTIaEY8yFe_5SALi-As_CKtGt-fDQ-snvUk79epT1sZpmN1ELtAVXa-_Ep0nVozkAQZwRi1mXNATyWq-0ynpsiXEGmK2QLUK9DDB7FU3Q9x2XN0xgXUWWuduvicinEFAQaqAutwdiRfiSWm-XLRy7A0jGINSk_os_adXg&x-client-SKU=ID_NET&x-client-ver=2.1.4.0) - ModelState is Valid
info: Microsoft.AspNetCore.Mvc.ViewFeatures.Internal.ViewResultExecutor[1]
Executing ViewResult, running view at path /Views/Account/Login.cshtml.
info: Microsoft.AspNetCore.Mvc.Internal.ControllerActionInvoker[2]
Executed action IdentityServer4.Quickstart.UI.AccountController.Login (api-authentication) in 4.5948ms
info: Microsoft.AspNetCore.Hosting.Internal.WebHost[2]
Request finished in 5.0052ms 200 text/html; charset=utf-8
info: Microsoft.AspNetCore.Hosting.Internal.WebHost[1]
Request starting HTTP/1.1 POST http://localhost:5000/account/login?returnUrl=%2Fconnect%2Fauthorize%2Fcallback%3Fclient_id%3Dmvc%26redirect_uri%3Dhttp%253A%252F%252Flocalhost%253A5002%252Fsignin-oidc%26response_type%3Did_token%26scope%3Dopenid%2520profile%26response_mode%3Dform_post%26nonce%3D636623363375579448.OTNmMzZlN2ItNjM1NS00ZWExLTgxNDktNTVhYTgxYTAzZTk4ZTg3OTY3ZjYtZTdiMS00M2JkLTljYTEtYjMyMmJhYTlkZjlm%26state%3DCfDJ8IAtEQoMrwNNnIvZApFa6UJtt6OsCJvqlXYU7h44BzCZ-5LXRlrQFQ75DJMD2Q5Rqr4K_BClHmc-zoOAirrEt7t5W5rp3inNnxFSgN1Er3qHNdUKDEubm6cZJyO0H-RkHAkZm4EeAx6gDDF2820aHFR5obZMJZS306jFh5Bb3bVaWhF0CEDTIaEY8yFe_5SALi-As_CKtGt-fDQ-snvUk79epT1sZpmN1ELtAVXa-_Ep0nVozkAQZwRi1mXNATyWq-0ynpsiXEGmK2QLUK9DDB7FU3Q9x2XN0xgXUWWuduvicinEFAQaqAutwdiRfiSWm-XLRy7A0jGINSk_os_adXg%26x-client-SKU%3DID_NET%26x-client-ver%3D2.1.4.0 application/x-www-form-urlencoded 993
info: Microsoft.AspNetCore.Mvc.ViewFeatures.Internal.ValidateAntiforgeryTokenAuthorizationFilter[1]
Antiforgery token validation failed. The antiforgery cookie token and request token do not match.
Microsoft.AspNetCore.Antiforgery.AntiforgeryValidationException: The antiforgery cookie token and request token do not match.
at Microsoft.AspNetCore.Antiforgery.Internal.DefaultAntiforgery.ValidateTokens(HttpContext httpContext, AntiforgeryTokenSet antiforgeryTokenSet)
at Microsoft.AspNetCore.Antiforgery.Internal.DefaultAntiforgery.d__9.MoveNext()
--- End of stack trace from previous location where exception was thrown ---
at System.Runtime.ExceptionServices.ExceptionDispatchInfo.Throw()
⚡ vikra@LAPTOP-1F31KEBP  C..\api-authentication\identity-server   master ≣ ~1 -0 !  dotnet run
info: Microsoft.AspNetCore.DataProtection.KeyManagement.XmlKeyManager[0]
User profile is available. Using 'C:\Users\vikra\AppData\Local\ASP.NET\DataProtection-Keys' as key repository and Windows DPAPI to encrypt keys at
rest.
info: IdentityServer4.Startup[0]
You are using the in-memory version of the persisted grant store. This will store consent decisions, authorization codes, refresh and reference tokens in memory only. If you are using any of those features in production, you want to switch to a different store implementation.
Hosting environment: Production
Content root path: C:\code\api-authentication\identity-server
Now listening on: http://localhost:5000
Application started. Press Ctrl+C to shut down.
info: Microsoft.AspNetCore.Hosting.Internal.WebHost[1]
Request starting HTTP/1.1 GET http://localhost:5000/connect/authorize?client_id=mvc&redirect_uri=http%3A%2F%2Flocalhost%3A5002%2Fsignin-oidc&response_type=id_token&scope=openid%20profile&response_mode=form_post&nonce=636623389073499629.MDU3NDJiZWEtZGRjYi00ZjI1LWFhODUtZDdlOTEwZDk1MjgwY2RmYmQ4OTMtZDdlMy00YTlhLTg2NmItOGE1MjRlMjNlYTcz&state=CfDJ8IAtEQoMrwNNnIvZApFa6UIBxk8d8E4fuhIKU2UsR-VFt7guqT97L1502gS-iVZNNmB4iSARF60Nb6IWPRrTJ-1AJgsdAWUEuwdlQZZbcg7W_SA3_oYEsI8zeiUJhhnrWZECgCWqYFpf20Y6kwOqAHNN5oImTF1HjBNIvei88bWXEPmJ8JspfxdJG0ax61Ys3fYQvA_qX3igkcqe0s2UMLQ5vXa9FknbOzTdfoSvvTe5Z-oRMXpc4lSQFCvzeznWhau1xoatyJic9aJJWvc7hoKQ-oeJf02q9G-9zhmQSNAKwIvazd4LcrszBS6Wj48_OBNCY8g1Bzw56oGmUqIoNsY&x-client-SKU=ID_NET&x-client-ver=2.1.4.0
info: IdentityServer4.Hosting.IdentityServerMiddleware[0]
Invoking IdentityServer endpoint: IdentityServer4.Endpoints.AuthorizeEndpoint for /connect/authorize
info: IdentityServer4.Endpoints.AuthorizeEndpoint[0]
ValidatedAuthorizeRequest
{
"ClientId": "mvc",
"ClientName": "MVC Client",
"RedirectUri": "http://localhost:5002/signin-oidc",
"AllowedRedirectUris": [
"http://localhost:5002/signin-oidc"
],
"SubjectId": "anonymous",
"ResponseType": "id_token",
"ResponseMode": "form_post",
"GrantType": "implicit",
"RequestedScopes": "openid profile",
"State": "CfDJ8IAtEQoMrwNNnIvZApFa6UIBxk8d8E4fuhIKU2UsR-VFt7guqT97L1502gS-iVZNNmB4iSARF60Nb6IWPRrTJ-1AJgsdAWUEuwdlQZZbcg7W_SA3_oYEsI8zeiUJhhnrWZECgCWqYFpf20Y6kwOqAHNN5oImTF1HjBNIvei88bWXEPmJ8JspfxdJG0ax61Ys3fYQvA_qX3igkcqe0s2UMLQ5vXa9FknbOzTdfoSvvTe5Z-oRMXpc4lSQFCvzeznWhau1xoatyJic9aJJWvc7hoKQ-oeJf02q9G-9zhmQSNAKwIvazd4LcrszBS6Wj48_OBNCY8g1Bzw56oGmUqIoNsY",
"Nonce": "636623389073499629.MDU3NDJiZWEtZGRjYi00ZjI1LWFhODUtZDdlOTEwZDk1MjgwY2RmYmQ4OTMtZDdlMy00YTlhLTg2NmItOGE1MjRlMjNlYTcz",
"Raw": {
"client_id": "mvc",
"redirect_uri": "http://localhost:5002/signin-oidc",
"response_type": "id_token",
"scope": "openid profile",
"response_mode": "form_post",
"nonce": "636623389073499629.MDU3NDJiZWEtZGRjYi00ZjI1LWFhODUtZDdlOTEwZDk1MjgwY2RmYmQ4OTMtZDdlMy00YTlhLTg2NmItOGE1MjRlMjNlYTcz",
"state": "CfDJ8IAtEQoMrwNNnIvZApFa6UIBxk8d8E4fuhIKU2UsR-VFt7guqT97L1502gS-iVZNNmB4iSARF60Nb6IWPRrTJ-1AJgsdAWUEuwdlQZZbcg7W_SA3_oYEsI8zeiUJhhnrWZECgCWqYFpf20Y6kwOqAHNN5oImTF1HjBNIvei88bWXEPmJ8JspfxdJG0ax61Ys3fYQvA_qX3igkcqe0s2UMLQ5vXa9FknbOzTdfoSvvTe5Z-oRMXpc4lSQFCvzeznWhau1xoatyJic9aJJWvc7hoKQ-oeJf02q9G-9zhmQSNAKwIvazd4LcrszBS6Wj48_OBNCY8g1Bzw56oGmUqIoNsY",
"x-client-SKU": "ID_NET",
"x-client-ver": "2.1.4.0"
}
}
info: IdentityServer4.ResponseHandling.AuthorizeInteractionResponseGenerator[0]
Showing login: User is not authenticated
info: Microsoft.AspNetCore.Hosting.Internal.WebHost[2]
Request finished in 317.3627ms 302
info: Microsoft.AspNetCore.Hosting.Internal.WebHost[1]
Request starting HTTP/1.1 GET http://localhost:5000/account/login?returnUrl=%2Fconnect%2Fauthorize%2Fcallback%3Fclient_id%3Dmvc%26redirect_uri%3Dhttp%253A%252F%252Flocalhost%253A5002%252Fsignin-oidc%26response_type%3Did_token%26scope%3Dopenid%2520profile%26response_mode%3Dform_post%26nonce%3D636623389073499629.MDU3NDJiZWEtZGRjYi00ZjI1LWFhODUtZDdlOTEwZDk1MjgwY2RmYmQ4OTMtZDdlMy00YTlhLTg2NmItOGE1MjRlMjNlYTcz%26state%3DCfDJ8IAtEQoMrwNNnIvZApFa6UIBxk8d8E4fuhIKU2UsR-VFt7guqT97L1502gS-iVZNNmB4iSARF60Nb6IWPRrTJ-1AJgsdAWUEuwdlQZZbcg7W_SA3_oYEsI8zeiUJhhnrWZECgCWqYFpf20Y6kwOqAHNN5oImTF1HjBNIvei88bWXEPmJ8JspfxdJG0ax61Ys3fYQvA_qX3igkcqe0s2UMLQ5vXa9FknbOzTdfoSvvTe5Z-oRMXpc4lSQFCvzeznWhau1xoatyJic9aJJWvc7hoKQ-oeJf02q9G-9zhmQSNAKwIvazd4LcrszBS6Wj48_OBNCY8g1Bzw56oGmUqIoNsY%26x-client-SKU%3DID_NET%26x-client-ver%3D2.1.4.0
info: Microsoft.AspNetCore.Mvc.Internal.ControllerActionInvoker[1]
Executing action method IdentityServer4.Quickstart.UI.AccountController.Login (api-authentication) with arguments (/connect/authorize/callback?client_id=mvc&redirect_uri=http%3A%2F%2Flocalhost%3A5002%2Fsignin-oidc&response_type=id_token&scope=openid%20profile&response_mode=form_post&nonce=636623389073499629.MDU3NDJiZWEtZGRjYi00ZjI1LWFhODUtZDdlOTEwZDk1MjgwY2RmYmQ4OTMtZDdlMy00YTlhLTg2NmItOGE1MjRlMjNlYTcz&state=CfDJ8IAtEQoMrwNNnIvZApFa6UIBxk8d8E4fuhIKU2UsR-VFt7guqT97L1502gS-iVZNNmB4iSARF60Nb6IWPRrTJ-1AJgsdAWUEuwdlQZZbcg7W_SA3_oYEsI8zeiUJhhnrWZECgCWqYFpf20Y6kwOqAHNN5oImTF1HjBNIvei88bWXEPmJ8JspfxdJG0ax61Ys3fYQvA_qX3igkcqe0s2UMLQ5vXa9FknbOzTdfoSvvTe5Z-oRMXpc4lSQFCvzeznWhau1xoatyJic9aJJWvc7hoKQ-oeJf02q9G-9zhmQSNAKwIvazd4LcrszBS6Wj48_OBNCY8g1Bzw56oGmUqIoNsY&x-client-SKU=ID_NET&x-client-ver=2.1.4.0) - ModelState is Valid
info: Microsoft.AspNetCore.Mvc.ViewFeatures.Internal.ViewResultExecutor[1]
Executing ViewResult, running view at path /Views/Account/Login.cshtml.
info: Microsoft.AspNetCore.Hosting.Internal.WebHost[1]
Request starting HTTP/1.1 GET http://localhost:5000/account/login?returnUrl=%2Fconnect%2Fauthorize%2Fcallback%3Fclient_id%3Dmvc%26redirect_uri%3Dhttp%253A%252F%252Flocalhost%253A5002%252Fsignin-oidc%26response_type%3Did_token%26scope%3Dopenid%2520profile%26response_mode%3Dform_post%26nonce%3D636623389073499629.MDU3NDJiZWEtZGRjYi00ZjI1LWFhODUtZDdlOTEwZDk1MjgwY2RmYmQ4OTMtZDdlMy00YTlhLTg2NmItOGE1MjRlMjNlYTcz%26state%3DCfDJ8IAtEQoMrwNNnIvZApFa6UIBxk8d8E4fuhIKU2UsR-VFt7guqT97L1502gS-iVZNNmB4iSARF60Nb6IWPRrTJ-1AJgsdAWUEuwdlQZZbcg7W_SA3_oYEsI8zeiUJhhnrWZECgCWqYFpf20Y6kwOqAHNN5oImTF1HjBNIvei88bWXEPmJ8JspfxdJG0ax61Ys3fYQvA_qX3igkcqe0s2UMLQ5vXa9FknbOzTdfoSvvTe5Z-oRMXpc4lSQFCvzeznWhau1xoatyJic9aJJWvc7hoKQ-oeJf02q9G-9zhmQSNAKwIvazd4LcrszBS6Wj48_OBNCY8g1Bzw56oGmUqIoNsY%26x-client-SKU%3DID_NET%26x-client-ver%3D2.1.4.0
info: Microsoft.AspNetCore.Mvc.Internal.ControllerActionInvoker[1]
Executing action method IdentityServer4.Quickstart.UI.AccountController.Login (api-authentication) with arguments (/connect/authorize/callback?client_id=mvc&redirect_uri=http%3A%2F%2Flocalhost%3A5002%2Fsignin-oidc&response_type=id_token&scope=openid%20profile&response_mode=form_post&nonce=636623389073499629.MDU3NDJiZWEtZGRjYi00ZjI1LWFhODUtZDdlOTEwZDk1MjgwY2RmYmQ4OTMtZDdlMy00YTlhLTg2NmItOGE1MjRlMjNlYTcz&state=CfDJ8IAtEQoMrwNNnIvZApFa6UIBxk8d8E4fuhIKU2UsR-VFt7guqT97L1502gS-iVZNNmB4iSARF60Nb6IWPRrTJ-1AJgsdAWUEuwdlQZZbcg7W_SA3_oYEsI8zeiUJhhnrWZECgCWqYFpf20Y6kwOqAHNN5oImTF1HjBNIvei88bWXEPmJ8JspfxdJG0ax61Ys3fYQvA_qX3igkcqe0s2UMLQ5vXa9FknbOzTdfoSvvTe5Z-oRMXpc4lSQFCvzeznWhau1xoatyJic9aJJWvc7hoKQ-oeJf02q9G-9zhmQSNAKwIvazd4LcrszBS6Wj48_OBNCY8g1Bzw56oGmUqIoNsY&x-client-SKU=ID_NET&x-client-ver=2.1.4.0) - ModelState is Valid
info: Microsoft.AspNetCore.Mvc.ViewFeatures.Internal.ViewResultExecutor[1]
Executing ViewResult, running view at path /Views/Account/Login.cshtml.
info: Microsoft.AspNetCore.Mvc.Internal.ControllerActionInvoker[2]
Executed action IdentityServer4.Quickstart.UI.AccountController.Login (api-authentication) in 3668.0827ms
info: Microsoft.AspNetCore.Mvc.Internal.ControllerActionInvoker[2]
Executed action IdentityServer4.Quickstart.UI.AccountController.Login (api-authentication) in 214.3197ms
info: Microsoft.AspNetCore.Hosting.Internal.WebHost[2]
Request finished in 3803.7181ms 200 text/html; charset=utf-8
info: Microsoft.AspNetCore.Hosting.Internal.WebHost[2]
Request finished in 222.9326ms 200 text/html; charset=utf-8
info: Microsoft.AspNetCore.Hosting.Internal.WebHost[1]
Request starting HTTP/1.1 GET http://localhost:5000/account/login?returnUrl=%2Fconnect%2Fauthorize%2Fcallback%3Fclient_id%3Dmvc%26redirect_uri%3Dhttp%253A%252F%252Flocalhost%253A5002%252Fsignin-oidc%26response_type%3Did_token%26scope%3Dopenid%2520profile%26response_mode%3Dform_post%26nonce%3D636623389073499629.MDU3NDJiZWEtZGRjYi00ZjI1LWFhODUtZDdlOTEwZDk1MjgwY2RmYmQ4OTMtZDdlMy00YTlhLTg2NmItOGE1MjRlMjNlYTcz%26state%3DCfDJ8IAtEQoMrwNNnIvZApFa6UIBxk8d8E4fuhIKU2UsR-VFt7guqT97L1502gS-iVZNNmB4iSARF60Nb6IWPRrTJ-1AJgsdAWUEuwdlQZZbcg7W_SA3_oYEsI8zeiUJhhnrWZECgCWqYFpf20Y6kwOqAHNN5oImTF1HjBNIvei88bWXEPmJ8JspfxdJG0ax61Ys3fYQvA_qX3igkcqe0s2UMLQ5vXa9FknbOzTdfoSvvTe5Z-oRMXpc4lSQFCvzeznWhau1xoatyJic9aJJWvc7hoKQ-oeJf02q9G-9zhmQSNAKwIvazd4LcrszBS6Wj48_OBNCY8g1Bzw56oGmUqIoNsY%26x-client-SKU%3DID_NET%26x-client-ver%3D2.1.4.0&_=1526742111829
info: Microsoft.AspNetCore.Mvc.Internal.ControllerActionInvoker[1]
Executing action method IdentityServer4.Quickstart.UI.AccountController.Login (api-authentication) with arguments (/connect/authorize/callback?client_id=mvc&redirect_uri=http%3A%2F%2Flocalhost%3A5002%2Fsignin-oidc&response_type=id_token&scope=openid%20profile&response_mode=form_post&nonce=636623389073499629.MDU3NDJiZWEtZGRjYi00ZjI1LWFhODUtZDdlOTEwZDk1MjgwY2RmYmQ4OTMtZDdlMy00YTlhLTg2NmItOGE1MjRlMjNlYTcz&state=CfDJ8IAtEQoMrwNNnIvZApFa6UIBxk8d8E4fuhIKU2UsR-VFt7guqT97L1502gS-iVZNNmB4iSARF60Nb6IWPRrTJ-1AJgsdAWUEuwdlQZZbcg7W_SA3_oYEsI8zeiUJhhnrWZECgCWqYFpf20Y6kwOqAHNN5oImTF1HjBNIvei88bWXEPmJ8JspfxdJG0ax61Ys3fYQvA_qX3igkcqe0s2UMLQ5vXa9FknbOzTdfoSvvTe5Z-oRMXpc4lSQFCvzeznWhau1xoatyJic9aJJWvc7hoKQ-oeJf02q9G-9zhmQSNAKwIvazd4LcrszBS6Wj48_OBNCY8g1Bzw56oGmUqIoNsY&x-client-SKU=ID_NET&x-client-ver=2.1.4.0) - ModelState is Valid
info: Microsoft.AspNetCore.Mvc.ViewFeatures.Internal.ViewResultExecutor[1]
Executing ViewResult, running view at path /Views/Account/Login.cshtml.
info: Microsoft.AspNetCore.Mvc.Internal.ControllerActionInvoker[2]
Executed action IdentityServer4.Quickstart.UI.AccountController.Login (api-authentication) in 14.1978ms
info: Microsoft.AspNetCore.Hosting.Internal.WebHost[2]
Request finished in 14.8471ms 200 text/html; charset=utf-8
info: Microsoft.AspNetCore.Hosting.Internal.WebHost[1]
Request starting HTTP/1.1 POST http://localhost:5000/account/login?returnUrl=%2Fconnect%2Fauthorize%2Fcallback%3Fclient_id%3Dmvc%26redirect_uri%3Dhttp%253A%252F%252Flocalhost%253A5002%252Fsignin-oidc%26response_type%3Did_token%26scope%3Dopenid%2520profile%26response_mode%3Dform_post%26nonce%3D636623389073499629.MDU3NDJiZWEtZGRjYi00ZjI1LWFhODUtZDdlOTEwZDk1MjgwY2RmYmQ4OTMtZDdlMy00YTlhLTg2NmItOGE1MjRlMjNlYTcz%26state%3DCfDJ8IAtEQoMrwNNnIvZApFa6UIBxk8d8E4fuhIKU2UsR-VFt7guqT97L1502gS-iVZNNmB4iSARF60Nb6IWPRrTJ-1AJgsdAWUEuwdlQZZbcg7W_SA3_oYEsI8zeiUJhhnrWZECgCWqYFpf20Y6kwOqAHNN5oImTF1HjBNIvei88bWXEPmJ8JspfxdJG0ax61Ys3fYQvA_qX3igkcqe0s2UMLQ5vXa9FknbOzTdfoSvvTe5Z-oRMXpc4lSQFCvzeznWhau1xoatyJic9aJJWvc7hoKQ-oeJf02q9G-9zhmQSNAKwIvazd4LcrszBS6Wj48_OBNCY8g1Bzw56oGmUqIoNsY%26x-client-SKU%3DID_NET%26x-client-ver%3D2.1.4.0 application/x-www-form-urlencoded 993
info: Microsoft.AspNetCore.Mvc.ViewFeatures.Internal.ValidateAntiforgeryTokenAuthorizationFilter[1]
Antiforgery token validation failed. The antiforgery cookie token and request token do not match.
Microsoft.AspNetCore.Antiforgery.AntiforgeryValidationException: The antiforgery cookie token and request token do not match.
at Microsoft.AspNetCore.Antiforgery.Internal.DefaultAntiforgery.ValidateTokens(HttpContext httpContext, AntiforgeryTokenSet antiforgeryTokenSet)
at Microsoft.AspNetCore.Antiforgery.Internal.DefaultAntiforgery.d__9.MoveNext()
--- End of stack trace from previous location where exception was thrown ---
at System.Runtime.ExceptionServices.ExceptionDispatchInfo.Throw()
at System.Runtime.CompilerServices.TaskAwaiter.HandleNonSuccessAndDebuggerNotification(Task task)
at Microsoft.AspNetCore.Mvc.ViewFeatures.Internal.ValidateAntiforgeryTokenAuthorizationFilter.d__3.MoveNext()
info: Microsoft.AspNetCore.Mvc.Internal.ControllerActionInvoker[3]
Authorization failed for the request at filter 'Microsoft.AspNetCore.Mvc.ViewFeatures.Internal.ValidateAntiforgeryTokenAuthorizationFilter'.
info: Microsoft.AspNetCore.Mvc.StatusCodeResult[1]
Executing HttpStatusCodeResult, setting HTTP status code 400
info: Microsoft.AspNetCore.Mvc.Internal.ControllerActionInvoker[2]
Executed action IdentityServer4.Quickstart.UI.AccountController.Login (api-authentication) in 52.3081ms
info: Microsoft.AspNetCore.Hosting.Internal.WebHost[2]
Request finished in 80.612ms 400

vikmn picture vikmn on 19 May 2018

A wall of text containing the all of the logs is really not helpful. You might want to start by checking out the exception its throwing.

I have used that tutorial recently and can verify that it works you may have changed something or forgotten something.

LindaLawton picture LindaLawton on 23 May 2018
👍1

could you share the code @LindaLawton as i have followed the steps too. What i see in the error is a subjectId mandatory. So either the user i am using is incorrect to log into the application or the issue is elsewhere.The part of the tutorial does not specify what user is being used to log in. So i am assuming that the user that would work is whatever is set up in the config file of the identity server

internal static List<TestUser> GetUsers()
    {
        return new List<TestUser>(){
            new TestUser(){
                SubjectId="1",
                Username="test",
                Password="test"
            }
        };
    }

So when i go to the login screen i use test as username and password.
Turned out i needed to restart the identitity server having had the issue which i probably forgot so i couldnt get to the consent screen.
I managed to figure this out having gone to [http://docs.identityserver.io/en/release/quickstarts/2_resource_owner_passwords.html] which sets up the test clients. Being interested more in the mvc side of things i jumped past tutorial 2. Hence couldnt get it working.
Probably be useful to make this bit more obvious in the tutorial in case others are navigating the tutorial in a similar fashion to me.
Having navigated bit further i do see the TestUsers method setup in further experiments which makes sense if i had known that i was setting these users up in a previous step.

vikmn picture vikmn on 27 May 2018
👍1

I think there is a note in the tutorials that states they are meant to be done in order.

I will have a look in the morning. See if it can't be made more clear.

LindaLawton picture LindaLawton on 27 May 2018

All set on this issue -- can we close?

brockallen picture brockallen on 31 May 2018

Yep

On Thu, 31 May 2018, 19:25 Brock Allen, notifications@github.com wrote:

All set on this issue -- can we close?

—
You are receiving this because you authored the thread.
Reply to this email directly, view it on GitHub
https://github.com/IdentityServer/IdentityServer4/issues/2325#issuecomment-393628455,
or mute the thread
https://github.com/notifications/unsubscribe-auth/AEFbVv7sB8sQP0OpPwlwHNtN30GXi2OTks5t4DWigaJpZM4UFvBA
.

vikmn picture vikmn on 31 May 2018

@brockallen how do you feel about my tweaking the top of the tutorial series to note that they need to be done in order? I think only the first one says this.

LindaLawton picture LindaLawton on 1 Jun 2018
👍1

Sure

brockallen picture brockallen on 1 Jun 2018
👍1

This thread has been automatically locked since there has not been any recent activity after it was closed. Please open a new issue for related bugs.

lock[bot] picture lock[bot] on 13 Jan 2020
Was this page helpful?
0 / 5 - 0 ratings

Related issues

agilenut picture agilenut  Â·  3Comments
not-good-with-usernames picture not-good-with-usernames  Â·  3Comments
garymacpherson picture garymacpherson  Â·  3Comments
leastprivilege picture leastprivilege  Â·  3Comments
brockallen picture brockallen  Â·  3Comments