Google chrome IDX21323 OpenIdConnectProtocolValidationContext.Nonce为null
尝试在chrome 80 beta版中为同一站点cookie问题创建修补程序 参考: 迄今为止采取的步骤:Google chrome IDX21323 OpenIdConnectProtocolValidationContext.Nonce为null,google-chrome,azure-active-directory,samesite,Google Chrome,Azure Active Directory,Samesite,尝试在chrome 80 beta版中为同一站点cookie问题创建修补程序 参考: 迄今为止采取的步骤: 将owin升级到4.1 将.net framework升级到4.72 添加了参考链接中提到的sameCookieManager startup.cs var options = new OpenIdConnectAuthenticationOptions { ClientId = clientId, Authority =
var options = new OpenIdConnectAuthenticationOptions
{
ClientId = clientId,
Authority = authority,
PostLogoutRedirectUri = redirectUri,
RedirectUri = redirectUri,
TokenValidationParameters = new TokenValidationParameters
{
ValidateIssuer = false,
SaveSigninToken=true
},
Notifications = new OpenIdConnectAuthenticationNotifications()
{
AuthenticationFailed = OnAuthenticationFailed,
AuthorizationCodeReceived = OnAuthorizationCodeReceived,
SecurityTokenValidated = OnSecurityTokenValidated
},
CookieManager = new SameSiteCookieManager(new SystemWebCookieManager())
};
它以OnAuthenticationFailed结束,错误为“IDX21323 OpenIdConnectProtocolValidationContext.Nonce为null,OpenIdConnectProtocolValidatedToken.Paylocad.Nonce不为null”
尝试了下面链接中提到的几种绕过方法,但没有成功
设置cookies时,您是否可以验证是否将SameSite标志设置为None?Fiddler将在从您的站点重定向到AAD时显示它。@HirschSinghal yes它确实显示错误,与位于的跨站点资源关联的cookie设置时没有
SameSite
属性。您自己的站点也会有一个cookie。登录名不是这里的问题。在应用程序设置的Fiddler中查找cookie,如“openid.nonce”@HirschSinghal,当我在app_start>endrequest方法中调试cookie时,我可以看到samesite=none的openid.nonce cookie集,也可以在fidler中看到它有相同的问题。你解决过这个问题吗?