-
Notifications
You must be signed in to change notification settings - Fork 114
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Protected Resource Builder + MVC #104
Comments
Currently, header propagation middleware assumes the presence of an access token in a header. This is not true for cookie-based applications |
Is there a way, even not official from the library, to do that? I'm building a mvc app and I really want to use this keycloak resource. I've tryied on some ways, but didn't work. I used the source directly, trying to put the tokens on cookies and recover, but no success. |
Hi @luylucas10 , it should be possible. The only issue is to find a valid token for exchange. Have you tried exchaing id_token? |
EDIT: Nop, It doesn't work, I've tested more now and have a problem to check permission because ideed it needs the user token, not just api access. I could find a way. I put
I think that isn't the best way, but works. I'd try to use Duende Token Management but had problems with DI. Now in the action I can use If you could provide a better solution I'll really appreciate that. I can commit this example, I've created a new project at samples directory of the repo.--- |
Finally I have a solution. This was the reference that I used: https://github.com/mderriey/aspnet-core-token-renewal/blob/master/src/MvcClient/Startup.cs We still need the
Now I have the |
Awesome, I'm looking forward to your contribution. Looks good to me! |
No description provided.
The text was updated successfully, but these errors were encountered: