asp.net mvc - MVC 5 app - facebook app redirects to the wrong URI - redirect_uri=http instead of redirect_uri=https -


i have app in facebook developer. app configured "valid oauth redirect uris"-value url https. when click on login facebook button on page facebook redirects me http version of uri. seems facebook bug in oauth module?

i had issue when deployed aws elastic beanstalk environment ssl terminated @ load-balancer. in case, request received load-balancer server looks client connecting http, , owin providers incorrectly infer url facebook/twitter/google needs connect site should use http instead of https on public side of load-balancer.

i couldn't find simple solution this, there didn't seem parameters override uri protocol gets stored in iowinrequest.scheme property. in end, grabbed source code katana project, , source code asp.net identity project, , hacked around bit had local projects in solutions for:

  • microsoft.aspnet.identity.core
  • microsoft.aspnet.identity.entityframework
  • microsoft.aspnet.identity.owin
  • microsoft.owin.security.cookies
  • microsoft.owin.security.facebook
  • microsoft.owin.security.google
  • microsoft.owin.security.oauth
  • microsoft.owin.security.twitter

there 50 or other projects within katana left out - made of these other dependencies nuget package references official versions.

then found every reference iowinrequest.scheme, , replaced snippet of code looked x-forwarded-proto header injected load-balancer when using ssl offloading.

something this:

var scheme = request.scheme;  if (string.equals(request.headers["x-forwarded-proto"], "https", stringcomparison.invariantcultureignorecase)) {     scheme = "https"; }  // use scheme in construction of uri...

if load-balancer or proxy server doesn't provide x-forwarded-proto header, options pretty limited. re-encrypt traffic , send on server using same protocol came in on.


Comments

Post a Comment

Popular posts from this blog

angularjs - ADAL JS Angular- WebAPI add a new role claim to the token -

i have created angular spa webapi backend using adal js authentication.as there no roles in ad, need manually add role claims in order give users access different api controllers. the roles stored in database. expecting inject claim through call webapi after authentication ad. webapi code might this. identity.addclaim(new claim("role", "user")); var ticket = new authenticationticket(identity, props); var accesstoken = startup.oauthbeareroptions.accesstokenformat.protect(ticket); is possible replace adal idtoken new token? is viable solution or there other better way handle this? as initial token generated azuread, possible edit token add new claim? appreciated. graph api supporting group claims. see here: http://justazure.com/azure-active-directory-part-4-group-claims/ if @ examples on page, users assigned groups , app can check group in claims. in current version of portal, need app manifest , modify it.
Read more

node.js - Using Node without global install -

i'm working on few node & electron (atom shell) projects , i'm curious how them work without user having install node globally. i've seen few applications including node directory in project contains node.exe binary. how go setting node project use binary? edit: thought should add, i've searched everywhere answer this, unrelated results.
Read more

php - CakePHP HttpSockets send array of paramms -

i problem when make request (i can request). $link = 'http://uri/path/?param1=1&sid=2&sid=3&sid=4' $http = $httpsocket = new httpsocket(); $res = $httpsocket->get($link); if check request pr($http); i see : [line] => /url/path/?param1=1&sid%5b0%5d=2&sid%5b1%5d=3&sid%5b2%5d=4 http/1.1 and i'm getting empty response because server doesn't know parameters sid%5b0%5d=2 when try send parameters array : $data = array('param1' => '1', 'sid' => array('2','3', '4')); i see same changes %5b0%5d - additional indexes. how fix it? unfortunately , can not change server side, if send request in browser, i'll normal response in json format. when make request, can parameters this: $param1 = $_get['param1']; $sid= $_get['sid']; tip: use diferente names parameters. have multiples sid. use sid1, sid2, sid3... update: can parameters this:
Read more