25,203 questions
OpenID with keycloak, infinite redirect loop after succesful login ASP.NET MVC 4.7
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(198.4, 89%, 29%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EC%3C/text%3E%3C/svg%3E)
cebuhax0r
66
Reputation points
I have setup my ASP.NET MVC 4.7 application like this.
aside from the files bello, nothing has been changed from the original generated project.
The thing is, I can succesfuly redirect to my Keycloak login page, but when it redirects to the url specified after succesful login, it reroutes back to the Identity server (which is keycloak) and the identity server reroutes back to the reroute URL.
here is the dev tools log, it does look like the cookies and sessions are passed properly
After succesful login in Keycloak page it redirects to /home which is correct as that is what i set
It does looks like cookies are passed properly
]3
However, it does seem that after calling /home (redirect) it calls the authentication again in Keycloak
causing infinite loop.
I already tried the approaches i found in the internet including using UseKentorOwinCookieSaver, using SystemWebCookieManager, and anything i tried online to no luck.
What am I missing here? Help help, im stuck on this issue for days now.
Here is the code
Startup.cs
using Microsoft.Owin;
using Owin;
using System;
using System.Threading.Tasks;
using Microsoft.Owin.Security;
using Microsoft.Owin.Security.Cookies;
using Owin.Security.Keycloak;
using Microsoft.Owin.Security.OpenIdConnect;
using Microsoft.IdentityModel.Protocols.OpenIdConnect;
using System.IdentityModel.Tokens;
using Microsoft.Owin.Host.SystemWeb;
[assembly: OwinStartup(typeof(AspNetMVC4.Startup))]
namespace AspNetMVC4
{
public class Startup
{
public void Configuration(IAppBuilder app)
{
app.**UseKentorOwinCookieSaver**();
// For more information on how to configure your application, visit https://go.microsoft.com/fwlink/?LinkID=316888
const string persistentAuthType = "keycloak_auth";
app.SetDefaultSignInAsAuthenticationType(persistentAuthType);
app.UseCookieAuthentication(new CookieAuthenticationOptions
{
AuthenticationType = persistentAuthType,
AuthenticationMode = AuthenticationMode.Active,
CookieManager = new Microsoft.Owin.Host.SystemWeb.SystemWebCookieManager()
});
var desc = new AuthenticationDescription();
desc.AuthenticationType = "keycloak_auth";
desc.Caption = "keycloak_auth";
app.UseOpenIdConnectAuthentication(new OpenIdConnectAuthenticationOptions
{
AuthenticationType = "Auth0",
Authority = "http://localhost:8080/auth/realms/master",
ClientId = "keycloakdemo",
ClientSecret = "tUM2gZiW5H3Lx2DQ4b5t4x5FzzrmADGi",
// RedirectUri = "http://localhost:44337/",
//PostLogoutRedirectUri = auth0PostLogoutRedirectUri,
RedirectUri = "https://localhost:44337/home",
ResponseType = OpenIdConnectResponseType.Code,
Scope = "openid profile email",
CookieManager = new Microsoft.Owin.Host.SystemWeb.SystemWebCookieManager(),
});
HomeController.cs
using System;
using System.Collections.Generic;
using System.Linq;
using System.Web;
using System.Web.Mvc;
namespace AspNetMVC4.Controllers
{
public class HomeController : Controller
{
[Authorize]
public ActionResult Index()
{
return View();
}
public ActionResult About()
{
bool flag = User.Identity.IsAuthenticated;
ViewBag.Message = "Your application description page.";
return View();
}
public ActionResult Contact()
{
ViewBag.Message = "Your contact page.";
return View();
}
}
}
Microsoft Security | Microsoft Entra | Microsoft Entra ID
Developer technologies | ASP.NET | Other
3,601 questions
{count} votes
-
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(246.4, 20%, 33%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESM%3C/text%3E%3C/svg%3E)
Shweta Mathur 30,296 Reputation points Microsoft Employee Moderator2022-12-13T11:22:12.493+00:00 Hi @cebuhax0r ,
Thanks for sharing the logs in details. As mentioned in last few posts, it seems issue is not related to cookies.
There might be chance that controller has not been configured properly to redirect the pages?
Did you try to redirectToAction() method to redirect the specific action.
The View() method doesn't make new requests, it just renders the view without changing URLs in the browser's address bar. However, RedirectToAction() constructs a redirect URL to a specific action/controller in your application and use the route table to generate the correct URL.
return RedirectToAction("Index", "Contact");Thanks,
Shweta,
-
Shweta Mathur 30,296 Reputation points Microsoft Employee Moderator
2022-12-19T11:23:04.963+00:00 Hi @cebuhax0r ,
Any luck with the issue? Are you able to resolve the issue?
Sign in to comment
Sign in to answer