authorization | PSR7 Middleware for authorization | Authorization library

I need to get token to connect to API. Tried with python this:

How can we pass additional data to Client application from Identity Server 4 in response after successful authentication?

We are using Identity Server 4 as an Auth server for our application to have user authentication and SSO feature. User information is stored and is getting authenticated by an external service. IDS calls the external service for user authentication. On successful authentication, the service returns the response back to IDS with 2 parameters:

1. Authorization code
2. Additional information (a collection of attributes) for the user.

IDS further generates Id token and returns response back to MVC client with standard user claims. I want to pass the additional user information(attributes) to client application to display it on page. We tried adding the attributes as claims collection through context.IssuedClaims option but still I am not getting those attributes added and accessible to User.Claims collection in MVC client app.

Can anyone suggest an alternative way by which we can pass those custom attributes to client app. either through claims or any other mode (httpcontext.Items collection etc)

How can I paste the data (row and column) passed by the function makeRequest to google sheet.

I am retrieving the data from HTML storing that into an object and passing that object like this makeRequest(facebookAccountData).

I can use something like this below to paste data (row and column) to sheet but in my case user will define which fields he requires. So I want to make this dynamic which I am not able do so.

I created a new Quarkus app using the following command:

I'm trying to figure out what the best option to solving this problem. I have an frontend application that will cater for both normal user and different company users. I want the normal user to only see the email and password fields while the company user see their respective IDP without seeing other company's IDPs.

At first, I was thinking of using a custom policy to achieve this. Basically I'll have a custom claim in the outputclaims that will specify the domain and inside my orchestration I'll have a precondition if it doesn't exist then use email and password step and skip everything but if it exist, then skip the email and password and match it to an idp selection step (if domain == companyX) use CompanyX's IDP (GSuite) or (if domain == companyY) use CompanyY's Idp (AAD). So when the company users gets to the selection page they can only see their IDP and not the others. I'm not sure how scalable that would be though.

The second option I thought was to have one ROPC policy for the normal users and use another policy for IDP selection but this time passing a domain_hint when user attempts to login in. The reason why I would go with ROPC on this option is to give user consistent user experience, normal user sees fields on the page while company user sees a single IDP button that directly sign through the domain_hint directly (Sign-Direct). Essentially having all the UI controlled by me instead of azure.

Example:

• domain_hint=CompanyX - I would have a TechnicalProfile with the domain CompanyX (GSuite)
• domain_hint=CompanyY - I would have a TechnicalProfile with the domain CompanyX (AAD)

Now this approach seem to be more intuitive but now my concern is that since ROPC uses Authorization Flow which contains refresh token while the Idp selection flow uses OpenIdConnect which doesn't contain refresh token (or at least managed by AzureB2C) it would screw up how I manage my tokens.

Is there a better way to implement this situation?

I feel like I'm missing something or I'm misinterpreting something.

I have setup SendGrid for my user registration email confirmation in my .Net 5.0 app as per Microsofts instructions here: http://go.microsoft.com/fwlink/?LinkID=532713

Everything works fine until the user clicks the confirmation link in their register confirmation email.

This issue is being caused by a stray amp in my confirmation link. I am trying to understand where it is coming from and how to remove it.

When the new user clicks 'Submit' on the Register.cshtml page they are successfully directed to the RegisterConfirmation.cshtml page and the email is received in their inbox.

Actual behavior:

The user clicks the link in the email and hits the ConfirmEmail page.

The user is redirected to /Index page.

The EmailConfirmed bool in the DB is not updated.

If I comment out the redirect to /Index in my controller, then I get a null value error shown below.

I am trying to download zip file of my repository using api but can not do so.

GitHub doc: github-download-zip-ref

What is the problem with my code? Thanks for your help .

I get only 404: not found error

I would migrate from Azure Web App Linux (PHP application , apache server ) to Azure Windows App Service (IIS) and i 'am confused about handling authorization header in IIS

In .htaccess , i simply putting these lignes , and the Application work fine.

Is it possible to use bot framework to send / update message as a user rather than the bot as the sender of message (perhaps after some form of authentication with the user that allows the bot to perform such operations)?

Below is an illustration of the current situation: I have sent a message by person A into Teams channel, and I would like to do an update to the message using bot framework as Graph API does not support update of message. However, the message does not get updated although there was no error.

This is placed in a web api controller "/test". Hence the update will be trigger by sending a POST to /test.