Why am I seeing duplicate Scopes on IdentityServer4's consent screen? -


i writing identityserver4 implementation , using quickstart project described here.

when define apiresource (using inmemory classes now) looks identityserver creates scope same name resource. example

public static ienumerable<apiresource> getapiresources() {     return new list<apiresource>     {         new apiresource("api", "my api")     }; }

will create scope called "api" (this done in apiresource constructor). if add "api" allowed scope on client object (using inmemoryclients proof of concept) , request api scope in scope query string parameter in auth request javascript client invalid_scope error message.

i found following this documentation can add scopes apiresource through scopes property so

new apiresource {      name = "api",      displayname = "custom api",      scopes = new list<scope>      {           new scope("api.read"),           new scope("api.write")       }  }

so if instead define apiresource , request scopes api.read , api.write (and add them allowedscopes property on client object) works fine except consent page shows duplicate scopes. shows api.read 2 times , api.write 2 times. see consent screen here

enter image description here

the client configuration follows:

new client {      clientid = "client.implicit",      clientname = "javascript client",      allowedgranttypes = granttypes.implicit,      allowaccesstokensviabrowser = true,      redirecturis = { "http://localhost:3000/health-check" },      postlogoutredirecturis = { "http://localhost:3000" },      allowedcorsorigins =     { "http://localhost:3000" },      allowedscopes = {                         identityserverconstants.standardscopes.openid,                         identityserverconstants.standardscopes.profile,                         "customapi.read", "customapi.write"                      } }

why happening? doing wrong?

update: here portion of discovery document shows scopes listed once...

enter image description here

it looks problem quickstart ui... or scope.cs class depending on how @ it. specifically, in method , line shown in class consentservice.cs

the following code

vm.resourcescopes = resources.apiresources.selectmany(x => x.scopes).select(x => createscopeviewmodel(x, vm.scopesconsented.contains(x.name) || model == null)).toarray();

is not filtering out duplicates. is, if 2 scopes have same name not considered equal. if gethashcode , equals overridden in scope.cs (which in identityserver4 - not quickstart) solve problem. in case selectmany return unique set. because apiresources property implemented hashset. alternatively, write own logic make return unique set of scopes. how solved problem. wrote similar jon skeet's answer in this post filtered out duplicate scopes.


-

Comments

Post a Comment

Popular posts from this blog

php - Permission denied. Laravel linux server -

when try register , send email user got error. working till yesterday. today gives me , cant figure out why. way on local testing work's. i'm stuck. please errorexception in compiled.php line 7512: file_put_contents(/var/www/html/storage/framework/views/53de219dee4f11a2db4f64a2c574ad02db5613f4.php): failed open stream: permission denied in compiled.php line 7512 @ handleexceptions->handleerror('2', 'file_put_contents(/var/www/html/storage/framework/views/53de219dee4f11a2db4f64a2c574ad02db5613f4.php): failed open stream: permission denied', '/var/www/html/bootstrap/cache/compiled.php', '7512', array('path' => '/var/www/html/storage/framework/views/53de219dee4f11a2db4f64a2c574ad02db5613f4.php', 'contents' => 'please activate account clicking on following link. <a href="<?php echo e(route('auth.activate', $token)); ?>"><?php echo e(route('auth.activate', $token)); ?...
Read more

google bigquery - Delta between query execution time and Java query call to finish -

context our container cluster located @ us-east1-c we using following java library: google-cloud-bigquery, 0.9.2-beta our dataset has around 26m rows , represents ~10g all of our queries return less 100 rows grouping on specific column question we analyzed last 100 queries executed in bigquery, these executed in 2-3 seconds (we analyzed calling bq --format=prettyjson show -j jobid , end time - creation time). in our java logs though, of calls bigquery.query blocking 5-6 seconds (and 10 seconds not out of ordinary). explain systematic gap between query finish in bigquery cluster , results being available in java? know 5-6 seconds isn't astronomic, curious see if normal behaviour when using java bigquery cloud library. i didn't dig point analyzed outbound call using wireshark. our tests executed in our container cluster (kubernetes). code queryrequest request = queryrequest.newbuilder(sql) .setmaxwaittime(30000l) .setuselega...
Read more

python - Pandas two dataframes multiplication? -

i have 2 data frames (a , b) a: column 1, column 2, column 3 0.1 0.5 0.7 b: row 1 5 row 2 6 row 3 7 how perform multiplication like (0.1)*5, (0.5)* 6, , (0.7)*7? in other words, how multiply value in first row of b value in first column of a, second row of b value in second column of b, , etc? you want multiply values without respect whether rows or columns. pd.series(a.values.ravel() * b.values.ravel()) 0 0.5 1 3.0 2 4.9 dtype: float64
Read more