redux-oidc-example | Small ReactJS application to demonstrate the usage | State Container library

I'm setting up an identity authentication for a project im currently working on. I need to be able to push a button to log into my server and then be redirected to IdentityServer4 and back again to my application.

I'm using "react-router-dom": "^4.3.1", "redux-oidc": "^3.1.4", "oidc-client": "^1.8.2",

And the projects backend is set up using .NET. I've taken the https://github.com/maxmantz/redux-oidc-example example to start my implementation and used http://docs.identityserver.io/en/aspnetcore1/quickstarts/7_javascript_client.html first to make it so that the backend and API worked.

My problem is pretty much the same as https://github.com/maxmantz/redux-oidc/issues/96 but I'm not understanding how to solve it.

I've tried solving it with different links I've found but they all keep going back to the same issue. I think thats because of the routing like mentioned earlier.

FrontEnd:

App and index:

I have cloned the repo from the redux-oidc-example and it works for the most part but after a few hours it gives the following error:

Action payload: ErrorResponse: login_required
at new e (oidc-client.min.js:1)
at t [as _processSigninParams] (oidc-client.min.js:1)
at t [as validateSigninResponse] (oidc-client.min.js:1)
at oidc-client.min.js:1

UserManager.js looks like this:

I'm building a React app where I want to authenticate the user using OpenID Connect. In my dev environment the OIDC authority is a locally running instance of Identity Server 4.

I found a Github repo which integrates the oidc-client-js library with Redux so I downloaded the example repo and pointed it at my Identity Server. The only other change I made was to call a local API with my bearer token instead of the YouTube one used by the sample.

I have a Windows environment.

On Chrome and Edge the example works perfectly. I am able to authenticate and successfully call my local API using the bearer token. However, on Firefox, although the authentication works correctly and my API gets called successfully with results displayed, after a few seconds the app suddenly appears to sign the user out. (I say 'appears' because it behaves as though the user has been signed out but if I reload the page, the user is already authenticated).

Note: I've crossed out a section here. This was a red herring. See Update 1 below which describes how Firefox is adding a second iframe. A redirect URL wasn't registered for my client causing a redirect to IS4's error page which was responsible for these CSP warnings.

Looking at the console logs, a key difference between Chrome and Firefox is a warning I'm seeing in Firefox:

The Content-Security-Policy for this page is default-src 'none'; script-src 'sha256-VDXN0nOpFPQ102CIVz+eimHA5e+wTeoUUQj5ZYbtn8w='

The only other bit of info I can provide is the console logs that are written as Firefox appears to sign the user out:

My identityserver4 client looks like this:

I'm trying to use oidc-client library in my React project but run into the same error everytime I run the code :

Babel - Cannot read property 'TYPED_ARRAY_SUPPORT' of undefined

I know that there's a specific Redux implementation of this library but I've had the same issue so I'm taking a step back. I'll use the Redux implemenation once my issue is fixed.

I've pulled the redux-oidc-example code and I'm running both at the same time, trying to find what makes it break. The results I've had so far are :

• Webpack configs are the same (mostly)
• All "important" dependencies are the same, with the same version.

At this point I'm trying to align every dependencies to see if one of them is responsible but I'd welcome any idea.

EDIT after @MinusFour comment : running npm ls buffer produce the following :