Using reference tokens in IdentityServer4 about identityserver4 HOT 8 CLOSED

Reference tokens is for access tokens - not id_tokens.

from identityserver4.

Then i have a problem or i'm not doing something right.
I'll post more details later.

from identityserver4.

Here are the details:
I have an app (app1) that is also the identity server host. The config is this:

Clients.cs

public static IEnumerable<Client> Get()
        {
            return new[]
            {
                new Client
                {
                    Enabled = true,
                    ClientName = "App 1",
                    ClientId = "App1",
                    Flow = Flows.Implicit,                   

                    RedirectUris = new List<string>
                    {
                        "http://localhost:54368/signin-oidc"
                    },
                    AllowAccessToAllScopes = true
                },
                new Client
                {
                    Enabled = true,
                    ClientName = "App 2",
                    ClientId = "App2",
                    Flow = Flows.Implicit,

                    RedirectUris = new List<string>
                    {
                        "http://localhost:53000/signin-oidc"
                    },
                     AllowAccessToAllScopes = true

                }
            };
        }

Claims when logging in:

var claims = new Claim[]
                        {
                            new Claim(JwtClaimTypes.Subject, user.Id.ToString()),
                            new Claim(JwtClaimTypes.IdentityProvider, "idsvr"),
                            new Claim(JwtClaimTypes.AuthenticationTime, DateTime.UtcNow.ToEpochTime().ToString()),
                            new Claim(JwtClaimTypes.Name, user.Displayname),
                            new Claim("id", user.Id.ToString()),
                            new Claim("username", user.Username),
                            new Claim("email", user.Email),
                            new Claim("tenant_id", user.TenantId.HasValue ? user.TenantId.ToString() : string.Empty),
                            new Claim("value_1", user.value_1.ToString()),
                            new Claim("value_2",user.value_2.ToString())
                        };

                        var ci = new ClaimsIdentity(claims, "password", JwtClaimTypes.Name, JwtClaimTypes.Role);
                        var cp = new ClaimsPrincipal(ci);

                        await HttpContext.Authentication.SignInAsync(IdentityServer4.Core.Constants.PrimaryAuthenticationType, cp);

                        if (model.SignInId != null)
                        {
                            return new SignInResult(model.SignInId);
                        }

                        return Redirect("~/"); 

Startup.cs

app.UseCookieAuthentication(options =>
            {
                options.AuthenticationScheme = "cookies";
                options.AutomaticAuthenticate = true;
            });

            JwtSecurityTokenHandler.DefaultInboundClaimTypeMap.Clear();
            app.UseOpenIdConnectAuthentication(options =>
            {
                options.AuthenticationScheme = "oidc";
                options.SignInScheme = "cookies";
                options.AutomaticChallenge = true;

                options.Authority = "http://localhost:54368/";
                options.RequireHttpsMetadata = false;

                options.ClientId = "App1";
                options.ResponseType = "id_token token";

                options.TokenValidationParameters.NameClaimType = "name";
                options.TokenValidationParameters.RoleClaimType = "role";
            });

The other app (App2) is a MVC client with the only config in startup.cs as follows:

app.UseCookieAuthentication(options =>
            {
                options.AuthenticationScheme = "cookies";
                options.AutomaticAuthenticate = true;
            });


            JwtSecurityTokenHandler.DefaultInboundClaimTypeMap.Clear();

            app.UseOpenIdConnectAuthentication(options =>
            {
                options.AuthenticationScheme = "oidc";
                options.SignInScheme = "cookies";
                options.AutomaticChallenge = true;

                options.Authority = "http://localhost:54368/";
                options.RequireHttpsMetadata = false;

                options.ClientId = "App2";
                options.ResponseType = "id_token token";

                options.TokenValidationParameters.NameClaimType = "name";
                options.TokenValidationParameters.RoleClaimType = "role";
            });

When the other app (app2) tries to connect to the first one (host) i get this error:
HTTP Error 404.15 - Not Found

Because of this url:
http://localhost:53000/?client_id=App2&redirect_uri=http%3A%2F%2Flocalhost%3A53000%2Fsignin-oidc&response_type=id_token%20token&scope=openid%20profile&response_mode=form_post&nonce=635932432741911136.NmQ1YmZjYmEtNzA5OS00NDUxLTlmZTQtM2QwMGY1YmM0YWY4Yjk0MjAyYWYtZWZkMy00ZDEyLWJkODMtZjZkMTQ3Y2ZhZGRj&state=CfDJ8B2egGQRAM9LolZKpOmaYb8x5aLa8jqsxTgV1bzN61snI37jyyY8J9TfleFIOteplVlh6J3u8ZpeqArHN-4hYXblDAus_aOiTgPxJiTzlqwvfJaznvUBNRFihjM_iuYtHiIZy_AV1_tFs6Qaoep8K0cx-dQqDrHjc-JWeR9gISeRV9ThHr8AXXJXUQIZXy7onFiTfRSW5fNN6Jn84C1ZNI3FR8JWsOjXzECQ7izlSClmucanNcpgpfzbx_ZM1M65Hs6NCe114GcfDCfccx8JCxhc8UZIewYB7FzRykrBUXWyJJDC1lVGShH9Gwg1_8bPpfavKQ4jno6TdGxVdtUzRZcIqS3bI3bTr1_3FuGfbehEQcSqCj0LX-0RSthFi6XT1qlKxaY1oE4x7sk2bp7Y5Wi5yrbmjahXOehDwjusGNd8mX-jNtunw0_5cxgJjJ7KLf-p81FjQaMOWDDKFvWeUpArkZ_y58UzW-SN5yh5tDZLr1xUXYvsdYmrd7HUfCGhS5i-dmLerT_TuKVSZmw411xdia3NXeyPeFIIJ-FaGXwkR8kHvb_jV8HZGIm3mA_IInzRenmxjtChLKMl2gV0rG8931MHimHsAUGZXfKFXAjPY2cBr34g_2-3Uju-G6IAFM5dMMBFfC_9N4bvmHIMt5hC3-IzIqT0-3gR0ntSQaLeyygMN3PbHYaJYOWfc25haATQdkpUUYroGayQgEA1eh2-4_99MthlDTimj1Hsf5ECrOtoFNPYl7pP9_DjbeoV9J-MKM_BHE4kuvU09DbeALTtIy5fBdhCbx3zUleQ6XGrI0LQFl8rF2VjWeXmtBTwBaqI7NfZnwwMnW8tgtxelvV6xqzYjA1E8mAmSkvTa637xfGvBuUxdR46M3YrMEkQmppzuYwRgPwCOr3RYPNj-6IXF8bbqnLMnEzBMP-mYMfVXwVj7ctZnK6rguJAHTsEO52w125BlGiuxcl6eQMx_kg3zPlyb-BckulJfKyNd_WkkqhZc-JiprmoMqt5tLWqnbgLDjWy6sXr6sWrx4SeVlQu4ep1p3FsxhXYfYLsiKl49bMFq9elGj8s5WkL6mm7Gu8vEWgfwdyuPqECC9Ek9j40NsGKLXv_gLpW7AA1yt3taJkeqcvw5-Z3pB5ZQNWCS3iBdckh-MXVzdhcmv3HGr58CxmdbXFHJKZ7hWuku7P_iv6ld9j8Q9_yzYG2u6xQplUwVYbTgcEvW-uLafQYfjzK9ZFLKmBEB_PQZrmHxTZZsZAGrQRpNwkPbxLo8av65ZTPH4rN7FDep5CCs3hvPuUXZ7O62pdnYmCjDmm-I1BXzzovOdTQrJXTJVahMgJibj9_lhYSCxN0_VMEqmbLfyPkGqRO9uTA5EENWfQyjXAQRjbFcr0wVbq2OxDZO1hicvNg1t8QjtfGn5zjZ1SojtdLoQ5raLmrYrYVLpPTPVuvyN8nJGFJwqsS-W1enqzfUZbt69APROwpxwI8MAnD6YIaUSiec6-PsNEeIF7RdVqDor468_520LJRAgO_FamU4js8A1x9f6eZfUaAF8M_Ket9rz0JFxLrSA2UtGHxU58wglVi6LI1aoZuupE-r9Qd87Gt_GyNl8heFI7LI8keEg9OY6Dyzvzug-XR3yxAcakzO8rqPc2f1RehwTTCy3CZLHvCADeoANxglb7r6YZv2VvQ5JZV_fUmy80QRnKrz_OIst-QZr2fH9geYwIDeTA7sP19xC37r8VWJEybLBWR1si91uS8oBmP8Cb8ZgjnrKJ7Gyjka0iMh1sPLdcgsUIHN1ojXfPU6xXDCDGZ4WhdOgEI1Is9MuoaWeOmZ6OxD3FhPwdrVcn5ZgN0kNERslwuAsvVzG7nE5YgMaLgs92muJ2I6e9ln9A26IS9qDuGQdY9aI4sV6ssGtWbfMzONSHwG4l_AbaCX6S7D3vPavV11kDLCcOjDOPjFED5DHvrc9IMcfaP-TUoPgF0A5PZxXwntKm47KNhvzzu4Op4q7YtqkFe2s5UFjMDMqWF9dRf-UjIMfFOqpc55I_eegz8IVdAbU9CevohlZ8U9l08JnjHVXpeCvpbUt7IQcIyiWVPT4GMlJ_E2EtcrZjVFGcXohRTq_sy7hgzoBYIDK-SKsFK6z6ADxjlfV-mSKEVuEfQaDqSSDDxhvm1-f7wLwJ-OaGUKV8U9_2AsPzguBIW8DbGpT3wZBaDM9fPU9OGmh5D4nBuEYaDeKe3v0m9CARVoUG7brrKmT9sKwynsrR2x68OmiQOFflg9xSEIykYmQo96uH9afcXPEuQ4rNAMPyMzHd_wjFY28KMM3W-MVprj7GYG8u0A3bXX1YDu_Q_IHfuETV6nPCMg0iVehP00pHPzpIGX5qKy51Z3690FS7FkHmjJwlbU3TBCWQ_1RajO0dMN9Ib

Sometimes the first application (host) gets an 400 Bad request - Request too long error and i have to clear my cookies and it's ok... for a while.

I've tried doing it as in the samples, perhaps i missed something.

from identityserver4.

You need to set the AccessTokenType to reference in your client config.

from identityserver4.

Hi,
I've tried that (I set the AccessTokenType to reference in Clients.cs App1 (that acts as idsvrhost), i haven't set anything in the app2 because i'm following the Mvc implicit samples in IdentityServer4-samples.

I see there is an option in UseOpenIdConnectAuthentication to set AuthenticationMethod to FormPost:
options.AuthenticationMethod = Microsoft.AspNet.Authentication.OpenIdConnect.OpenIdConnectRedirectBehavior.FormPost;

But that just redirects me to /connect/authorize route, i dont have anything there (don't know what it's supposed to be there).

Perhaps there is some other way to make this happen?
All i need is to sign in in one application and share the auth in other applications so i don't have to login in every other app.

from identityserver4.

If I use post AuthenticationMethod in the App2, i get Http 400 - Request too long. This is an example of Cookie entry in Http headers:
__atuvc=1%7C43%2C0%7C44%2C0%7C45%2C4%7C46%2C3%7C47; wptouch-pro-view=desktop; .AspNet.OpenIdConnect.Nonce.CfDJ8B2egGQRAM9LolZKpOmaYb-eGmajt0XjIwKLB64rEG2bmyddV8UCoAf3bzrcdqRiqrbKAOuJBKLUe1bRzj9wnlqpcn6TZwoOppH-i8NhvtVEfMWQ8hVKPTFLtp5LxG4LoFw-jT3uvD7NwxGcHr7zETJ4buRPxpR6SjlpG02tSS1b9DKQw0n8-zU6xgJ_2c5VSrSvo-DJwf_kFbE1SQOe0QKvHGjrgz2BOAI0K0W4MsU8bYQSn2H-XR9Udsli8PCPvmh3j5Gq7kwsxm9jk375BqE=N; .AspNet.OpenIdConnect.State.53F_ThjHgSew7ZbUYIu4O5uDrZuxaMNqcZft7PUnA9U=N; idsvr.SignInRequest.8d3a200923c2d7665b427f1cc7f46db5=CfDJ8B2egGQRAM9LolZKpOmaYb8tz7U0Gl4kOcmzz0IvVcU-tVEZJrHEJhN8BzlKbtGsCBI-WvVrIAJygvaGchGNGc_b5CUL7KrQfgnozaWfNew8Da0V3vocYVQ66vApYZG3yjbB1AMvQaO8CJ13UPwrDxJAY0pjEc3V1P9bKePaSM-U1CtZBnrcFQvGYQXUo4p7CslhSfp7KDKAuBJLh6OCWWzzBLCxlYcWkVf8IoG4pRFWjJv8GLDJbCok8yFyWlAEL3lMGhpkdFNdBHyxJP3DAriQZ0tSTMQJjaPuh_tGpqtpwSj7biLVG7QU8F6RNAeAXqHK9jA3HYae8Q90bsW60jW62f7H1Us2Op7shunsVndahcaA_ul6A4iaNmGvy-ryhzQKKwYkr0BzPEYhmWCHG4rllyHa3jFhV5zepKgoy4Yy6Ua2j0dDZ4M2XjcLrIsHJXcrxjG52XOenZVhkxl7xnSR-UnRNU8MiWrq0Q5Odh-rC_QRtN3xI5-ZMLnyVcrVSM_B_6P5CSRG8RENBqidmroPPnOraSqsHkaUyVyHNHdTz97F3PfhuaQjjNfnZlsap0-Q7G-mIDvonQ_mO6A1YmhA5igg-kNMNUL458CSgu_oQW6oEFcZ_Jrk9KdvynTirNFSfPx-pIbO7X0aM4uDwplMyt67lPbu4FJu3c-pzXFj_kRERlDEZT0ifT4McYoOaTkH2mpKPHYQVbqVOKCexldOsw0yuUY9UfgZ-n4IDKgWZd-wJzC9PnYTs3H0JLh9HQyUqJSOZDZDaMeA-cFCZrXf7-qquc_m_sgck6So4Pu5QnF0mGaWmn0UeqnhzK3VhbxXXBgnOQiYfXgkSXweXPItXghK0LjOoAHnPt6YjJmiBiwhpNqnzY5tIXfHUIR8HNslNRo0o22xdXEzOR1Wvy1Evoxh1T0dZVK8bUpgkTTqpfc_0rEXKMmtbGj3foOopzC_L8Cj115VylABp_2diDcvCwnVkXmyk0I9q6fClooLGU04Faz5yn5_USEfpyNT4EbB2nS8IW-HPAXqYJnHus-bcJk_n7zuyJnY0iTCAm9Uqc2hO2jJpPusGP7zeu2LgepxG-6ZmtLN66g9by09w15l1nCaBqKgiByw6a82_24wAVDu3WQUiHTrIKNEaUN6kpsS2QzJ3FeqEP-HNESgdVXy4pYrWGhWLZTKcZPNXrNyCjvAw4Z7RryPtbuX_pf63JXhFNDCfXV7CEVyYRAJ3mum4_IzTXGlrViSoeZ9hhnl7zZf9Eq6cBUkjV05JnYQFZ9HkoO-MaG7atL9OeWI-ygvIc8UiiOtNWYHTKplgAWc; VWsUdwWHOSo=CfDJ8B2egGQRAM9LolZKpOmaYb9iUFt8zvyttj6l6IBm2czB_mvgCk8HdKkDtdLLMkbv1lo9o4z98wS-StaWbrllV7jQYZrWyhO_7e5GFl9fJVImJBw4FUAkj6siqhaV0WFps9VxuC6q2woYKCUmykdZM3c; .AspNet.idsrv=CfDJ8B2egGQRAM9LolZKpOmaYb-ZlzWLXqXdTe9JJDz2eY-2JkTWP7xXwrdUEWJKzB6l5-YeBsrdbgSjyVUlKq_7VVUr07phD2DbRk1SKp9nnpByIbLNi20wEGyAYs8afu0hKk-YedQX5PgvfO9O3BvUsicYAKrfN6fJ5sn2PcPTRKEI_GoGjckZMLjYmAjv8Qw0y5X4NNlFGrsT5Wa73P4DR1v9liLGINVEOQQMgCIEvyFFaKi_KYu0PlcfTUO0HAGm0WG5sRRcJLPEvRjBTM48n4oohJoPB3CiLO47x8glU095XS8eTsrnX72QH2pAlqE8NQJKccbXt9osu8fIBNQwzFOaWtJ6O0JuluDOe_QfFF3-ZHcPD0L9kUh_pRhrPeoRuxv26e-m5bjYJAdcJSZe_PIsvwwy17F-mCrBZ99Gcq1ByH2kYON90LTi0CU_7K8IGkeTvhTleoEWyOEiwbTFk_OwQRL8bAtfgr_xXUxY4nDXzeebX8K2WHFQoSWn4WiLSd0LfIJ7mY5Y7CsGk4zsd6lIuEQRaB5tz0dUWeH7I27eLepkWe3lCK5kVYFh5ilLlAUCiIc1pYWDsHk_VI5QgK0; .AspNet.OpenIdConnect.Nonce.CfDJ8B2egGQRAM9LolZKpOmaYb970eVpP5pfkkXQUB44-f6WbPLjoe9MFN5s-fcQNgBLOPlAwZtOWZ83nYW7ZfocWnDL6ac6r5dcA_NsJzS9tNtdHTU70XU_S1LzHi-KHQ03jaK_Tg4v1z5_beLEjvMnqlOU-EeDX3I2Fq_bVrFMXYf0co4IZKRVLT9mSIASm4btB8VzezNTNcqUWfOKU08a9Jk9-cCMiHp0bmltkhhqS1vIJSufBQI2RPo8vhyn-doa51vjNlXY7RqADq8IcWHgMXw=N; .AspNet.OpenIdConnect.State.EtKt7AaI18lbKLbNdQlApxgcm1_x8rf_t_c5qNn0vwc=N; .AspNet.OpenIdConnect.Nonce.CfDJ8B2egGQRAM9LolZKpOmaYb_B8UeUSsKgXTLpsvdHwqXAiIbcsfte0KzX5gcETE-wEFQA2NLc5NbJ3wVjQjFCqJ5RJWOV3wyHWVViB61FgB-YPcuhLFVLqcDAvlagyyv7_H0EzWU6aJhlMSWoXYGLWMS81R8OdeGHBWl-PMVMks8E9sPXC6Qpr1P0G5F08AbPvz6nmI4NGRt9d9HWhYDc4ollbZM-iI41gxj7H6dJYjUl-33Gc5PAwmt0SWBwl3DkhbPXPkw9eWP8IN6h-_DLcgo=N; .AspNet.OpenIdConnect.State.t0JMIH7Hcc-O94sQJKAe1Bv-fWanv2CWdLXrneuUaeU=N; .AspNet.OpenIdConnect.Nonce.CfDJ8B2egGQRAM9LolZKpOmaYb9VZSdlFFLjkaVNU8Uh-8KxPe3K9Bjkcq2K59FLM6TeoGbycHBkg5Xqll_5vGF1hJW7s9ztXauv_9i_JD5Z4IkLwVK4xeDQtVckwIw4XSakyV1wO-LecqhAcOEwB52B0LKwqQpC2B-TgydZ-VM-oVjX-kiBbkKsznnVjt6ZkHoGKaxGIWRUgOjXAhcTJOI0jd0P1lLVfYTkg0wuvMpRpTtINbcDnGO_5fZ0bfQR7jJJa8fG_uZhtbn8wft6K7QpT7w=N; .AspNet.OpenIdConnect.State.DH8kxQKYzAks-tmg4sCj0eBCFX03Q0tjKVU-E8vkrlA=N; .AspNet.OpenIdConnect.Nonce.CfDJ8B2egGQRAM9LolZKpOmaYb-vzfLrtuB26alIjN03sY7pNNJJoLTqzenp_EWgXg-49Y9jXnc5quJlB7RiQylD0KCi__HJp8_tdJBXGrQGBED0gp1gz3uLXsh6B7mryhW8AfnYmK1HxFWMgk92rlmi0cP05ezn_m3G6W-646GIFMst2LCeaUO6twnda3LApfF4ID_R2LzoRFsAXX6JmzlaSt_6Yzczjls3aB2N6iaqOHCFu2Lrj_kDis7KTxOdyccb2UWNkQEz0SBf6IKlevWiJFw=N; .AspNet.OpenIdConnect.State.QVAHeEtP6Y96YT5QL-3mLkzF8yq7SUGm-USUNQOlfiY=N; .AspNet.OpenIdConnect.Nonce.CfDJ8B2egGQRAM9LolZKpOmaYb-d9dLHuODbzKIDGxgUW0Vi-s0LVZXyDl6O8D_1OglIoVo27FhQ2JmagVEYCf2WjpJeftnuEEkaFspxsWtgXzDqGFLq2M1BXuflzPlTOjRu9ljazUTF1Ay6XcI3FP2haqkOVvHjSw9Iun7N7WQK3tbDhtR6ROpOPeWEiV3oAy63DHdBxkMG3oYjRv1xme8E82jfL0M3ibsVYoubwuYTeArJ1MkJHJ2-szWzwrgGrsI1NbSN8g0DZApc27oAOAO5-6k=N; .AspNet.OpenIdConnect.State.__CjYHBUlLzzIZhX3Zgi6Tqv597rSs-SnTADoYI7hLw=N; .AspNet.OpenIdConnect.Nonce.CfDJ8B2egGQRAM9LolZKpOmaYb_EVLl8_JHTorTpMGxB4ygUEhPfytbf5OhA1a9v7nJuC_rrM3mQTlyCbixLOr5tA6EGXPvZtviVMwyCkhgNPu1UmSRvrfMXhSiMI7hHzVMaMLC3UeBVqUl4PSUSO5elEWB8qEQR-EBPMDnA3iz8UDRM-j_8HXQMbCF20l5yy6BTOVrbVo8fwMgj6JGhtaygQ8YNowHHgCI06MiWlW3LvgF2XPahFY2-Ucdz1_mArE1JcvpxGDm29S0HPXfT0ZpY5qA=N; .AspNet.OpenIdConnect.State.c0O0KKh9gbVC8Eh6VQUyUdKZdLcpGvqK9wzpp1JsX0g=N; .AspNet.OpenIdConnect.Nonce.CfDJ8B2egGQRAM9LolZKpOmaYb9O7t3ceaQHWT2udvq1GiQ111nlkQ1Rlrqs-xWUx4OddKnM3G3dB8FScfiKnQ6611gpfkpnvUq1mUEarUzNkuKrsoE_HIsaeaFTzUcbWuf4zXCiYSDeWYuNzBKWWZDfg0OlnkRsFF5pKaqtRP-HyspdwQhN5BEeg7fjZ64NO3Lz1RUfTxmVOAP-yBimc9km7pjdzGhQRa_pofSdLj2c4YqS85MHiTkgV2Rk_XRgrgcTLZU9Ffca9nY26OQLWQ3hPv0=N; .AspNet.OpenIdConnect.State.-1KbBRZV9XX2PR_-iHmQMghtlwFu7A3paI6TsUvLM3o=N; .AspNet.OpenIdConnect.Nonce.CfDJ8B2egGQRAM9LolZKpOmaYb9h1LMV6IwmHR4ZYM8O-7HYincZVWj38kpbAQRH8VpOo3aByIgGRBEZ45gL_TzFGijNlGAZuHpokwX9apJz_Q9tpWYM4jrQVwPqZAnNTRON-6dYUy5djEyMfzZbsH4QedTPMKPN407T6VJJeKI9vI78pqASRwhW_5iw6XGBjWBD_2QAtktm73lAdFf_jVcnEPUydFdwEPFOcqdD5vt-VgvA42DCAZOP8QbwHyLtyjtk2Px0BSllbeDCNNsXqLuZ7NQ=N; .AspNet.OpenIdConnect.State.Y-3kkzepbMLpbFLunTluvyVk7GIIpvTGT_4nVd6vCc8=N; .AspNet.OpenIdConnect.Nonce.CfDJ8B2egGQRAM9LolZKpOmaYb8S3p7i2CB6kP3DsqW01EQDl9op76-r_RQxlZ4QWONBU2fmL-TrFZwUqi5nyVUaqbDs5iPqhMNi6ZxPEB-g5Y8cQFAhrbzHIxm3zUxVPVswZsB8rIou5RVMrbawkJdev7bCBEsU8U2Wn2tH-czA5AEwCXWtHJgHHsNPrClGvMsjRsNIi0tQjfEJJsQFtjEgw-xqNsA_QXIbJb3eYsGtevVWW_5O7hXYJo-_NTIw8R7GVVck2172nwTL1eXReUxwdak=N; .AspNet.OpenIdConnect.State.L70a4VywG6J6nC13AOW2W2u1Spyti4P_G5-Gu5lxk58=N; .AspNet.OpenIdConnect.Nonce.CfDJ8B2egGQRAM9LolZKpOmaYb_6vHH-Aoeb8vMW6OIBwPoZXat2j2Ll9ckPm6ygPdhoAnIKZqTDq-l3dhlUEZts9Bhyi8ULXxiIimUS_PLHz4dL510wIkhSVVS3nwipVhdT83jP9qb_CsPMYAikqFVY04N3myMRpwrT8th-KVDzGmo22NCgHpyfcpKO9cxfHS41XHxklYRU3nca-XEB3yYzeEe_VJKYp6KV9C4_OzkPVdTtcgR37ZjYRDMTwDY9r5AQwzIP7QKpdRi640-oMsxsVxU=N; .AspNet.OpenIdConnect.State.WlAh7-X5m2J-3LqhyOWKRWi8wqQWN-p7_NkDb_U7cLY=N; .AspNet.OpenIdConnect.Nonce.CfDJ8B2egGQRAM9LolZKpOmaYb_dsLrgBqemg4eymtlPyFpj_0RbuHSSlRxypMWfFsS7ouoZFhG6JpI3gvzLnEXW8c6WCPRMGahZWPzA2fqbr7JzdhRlV4k4g8LqeAkCI6aSdhdjLgt-61yMF_RzDofX6TDGMfTJO5XvXux0LYn4ZdPyj8dwrHE6a19yoCOXfjcXoGn0396fEL1zR7kRW20PU22qMEypBwboAfIkk6KpaFUfwgzApYjYcf0-ZFRzHTVslxx7dYdWJOxnJbhfInPyQ-M=N; .AspNet.OpenIdConnect.State.z6jxV_nhvFZAHPOWifZsAbh8bxzGxC5k2Axv-mXPbFk=N; .AspNet.OpenIdConnect.Nonce.CfDJ8B2egGQRAM9LolZKpOmaYb_3FlCN2zFTnAtkriMMv-fAjAkeiCM-B8rKAvWDWSdnRR3vYSaxVv-wAq7bZdJqPRdp5z2GjNthlprWchL5HzICFUqiW55hhsHjkPO9rJlqSjtQYTPE4WYawROEMYdipZw2g0QNmVtf0mSrpcsigLdg64EbRjYFOPL_ymoco1h5438KRonHwfzGCeHxrtOwsJw5o7GdCMz32ZcMc6Y1r6J6Oz6Ls9JCRIf1qR-M8csprzz4uMjkrEZXt-H52xOW8aU=N; .AspNet.OpenIdConnect.State.Y5t93awJga9PuztV87RBubyK9hLDy2dt5KoHcfWPk3k=N; .AspNet.OpenIdConnect.Nonce.CfDJ8B2egGQRAM9LolZKpOmaYb8rckC0y8rwd1By4M7XruiMxFkVrQ7xHx6DT2aEpFKPKRpQcohKjPgxd1qaqSey3Z63ep0onb0oHu7Lf4KfTnNeudlH26huPtPRorfLFgICle3LcN8VqP2AbRwFKGJKuYNTr6mU1Fja2RXJvlNnEuYqCSo384Rhksy2Xjn80Jfb8OH9IOwPeFnsLCi7TCzR_gO5_dyX2zYqG1rM-IX65grRVTq0t6ikulvcGOLNg86pytzGXCTvxLHTjjkatBN2A-E=N; .AspNet.OpenIdConnect.State.RDU2J1B2G9E1Itmky50uTZcICXkn_ODGiNAU9O9mZdI=N; .AspNet.OpenIdConnect.Nonce.CfDJ8B2egGQRAM9LolZKpOmaYb-jo-HmL1VgbYgR4umdAwSmzbI2WHZcQJm5i-Z-JDVnNDxb8SsgWrd_ACrZsFiWrBlQwX_BR6F17wxXjLFHgfU-PS7exod49a9gK8S7vaJ423duUesU8oFfcPthxb3Zld0fR2xW6Y3GhBPtRzSXzvY9RLoRd_MOlGaxa4XFQNWWY5lFFsBZzyQysnoau40oRsyNeWJxxgvOU-NGFZu-A0xQMZrpRr9RQqmVud1ihIr2Nzn5OaxxoTgEzIBiPB2OwkU=N; .AspNet.OpenIdConnect.State.1w5e_nwcaOYfudu7AS2ARFoy3klsvkwIAoMk6p9_qeI=N; .AspNet.OpenIdConnect.Nonce.CfDJ8B2egGQRAM9LolZKpOmaYb86lCtWtwQPxX-cP0EfS3pUaewjjelhmde2iTvKqB1jOP1kuiOdmRQ9IXwCegzQhqycyNxadiwAoB7hitMxVfRNWzaGD9nq4HkO4Imo7QuwS541tRxicROk88JDbIjy0xpI1pL1ggwbj44u2LM-Gse4NQcIeQytsQ_DX-LjHc3CcSrS0XGZFxd7S8zsqBZ5RbuaKJQfs5XcMhqc5baxLOejxjeNsMToYBZTIQVK3mk7DDQwaqux7k74GCKeodJ0uss=N; .AspNet.OpenIdConnect.State.YzwGOeLVLvYKMnSzA0gt29itQbmBmz7-d9kqXbTxg5A=N; .AspNet.OpenIdConnect.Nonce.CfDJ8B2egGQRAM9LolZKpOmaYb_JT8Nc8VrBw8qppkSP9EUjZMDMdMMq6xahx314s16F1ixPeMg81N8RcMwTxcWNDkkJ0ShtJd-pWadK44NmKiRBRYtQHsI8XbhtiAKOO2lGkgs-llNgcUFakKM0alhtlw_3lMwzEXjTyFFr48hTfxu5sHLR1Homl2VAKUIqlCmBe4GarxBk25PugwaFfTRjmKKcev9t8_vQqMvD45Hfew3Xdi2McZMAt1JpqmN1H3dmF9C7Uar_O9NQUhbMaJs7s24=N; .AspNet.OpenIdConnect.State.Tq5m9mWN1E40oaS6E_X1zkXrq4hYS7f29bCxy0clwIo=N; .AspNet.OpenIdConnect.Nonce.CfDJ8B2egGQRAM9LolZKpOmaYb-2V9UWjsVw89WWBwI8y7lQvrWehFv1PF46YtxAQiJhV7QacXpzOkTvt7NBXzfOTy2kpf5vrSt1FkBRgnIUtB6x3FiOG2HwOnzp0_iAAfZxHcQmNhafx1Hfrn4yC0WmS2fPLSNuN1ENErsFdMVxkuEmTUJrM3HjSN1GTNk07rZbuCxuFi-wontbYH9_gIhyuNizpmRI7Ynz8wsRe7z1eVBF4v0BAQlzqpdB5Lfs4XuB7ZbU8I6jFIEolp893Q65mR8=N; .AspNet.OpenIdConnect.State.Tsv_-N3BOirB6503l7XCOrmfmaeuemzSEyMC6WjXoY8=N; .AspNet.OpenIdConnect.Nonce.CfDJ8B2egGQRAM9LolZKpOmaYb_Rqlwt0A5Wwo70TQgsnBF8Yr0RYDU8MXaOWigaCyso4x-UmUjpYpjNEBv251bIe-UtxE3s9qy1O9SN9kw_Ywuyk_apwF4AEjHjeS77hZEmC_d7catN6J7poA_9IpbP8yBa85LhPDq5500rOYqZO_MXM_872dgPHijWiPeyqCNopdP7x9SrxOWT4JwWbpS-FVT7IokqrLn1qFHTj9JhY7X1CKB90BaKC8-wo0mxAmkLwlxHFA8Ha_tlVn2wqgidJHo=N; .AspNet.OpenIdConnect.State.nn0l_3jcRAbkugePg_vUx3_uNmMjJJKJU5VRHN6GJjQ=N; .AspNet.OpenIdConnect.Nonce.CfDJ8B2egGQRAM9LolZKpOmaYb8l9Xnw6a-KheTJG5XuwO2_riU8w_-rl-5jloVf3cvyeuHvz6SuanH5hRKuxIj8SvH7uJkhBNTA-e25BIc7mD73YKuU_cLa8bSSjdGMtwHeDh6wHVqK-risRPa0n6qwKQnBvzSGNuWlzePsA37IDhZ-kk5UCgkjihmt2lTZtivLFS3OKNePNEgRML4--G9GVaELS_mQB28WgG65UV5iMk4uHluC9RvhHCHpXIqT7ZGO1IfwIOCcWxUeNQmdAdb7Ap0=N; .AspNet.OpenIdConnect.State.tYeBJqbTxRUjDxqAbrd6MmZjQnLzAfalFlLeL4LKDyM=N; .AspNet.OpenIdConnect.Nonce.CfDJ8B2egGQRAM9LolZKpOmaYb8UEidWGctyqL1QIsQQgA8dtAOx9ZC5raEcv5YkkE5Z0AqswAo4uqsN5JsLLx0sXq2kfcFu8IUyBjFy6g_FOALCV1WmTsuMj59-KP2IY9AN21W1UqaQAw8Fq7jLrwtd6p84s5bKpqVomSAmRhUuoYnGWsFTD8T2GxRC8LRBedeXevBUyxwAcjhEVOGjE8cOdkXovXBcXYq7SmGLEvZnpigWrjzBz9UB5w0_j-aGbP7T-RcG3kwxZYqdg7vKW2MlihU=N; .AspNet.OpenIdConnect.State.8Srvrd7KjQVIrYJjIemfOmaVT1Uie568O_Rq7HrsKvQ=N; .AspNet.OpenIdConnect.Nonce.CfDJ8B2egGQRAM9LolZKpOmaYb-NK-_nDNJc57oM41QJJIasV8PWO5hRUSYuipT1vbrfRFOL3wQ3tKiD5ab0JHLwEuyCNW-DvWMo6AQa2NDmlOo4_IFT5EE0k-5swcJgS754Z6SwwbeLI-fGHEh9sbvOEBk3763sDUv2lq2PPt_82rgYJno9UCWTrbXEiND8U7CtqHn4uwPl8Yrowlep7_WWYCvYVlhnMmzWkns2UYcuB3Bznv8OM_T9PkGAgWf8Licx9eH5ulQYb4a_6yPPypXz2d4=N; .AspNet.OpenIdConnect.State.fujb_rvEYGldfASiNo-dALr-bGvIJiqvAFQOXZh2KxA=N; .AspNet.OpenIdConnect.Nonce.CfDJ8B2egGQRAM9LolZKpOmaYb9ihOIJtLczaaOBMbhonoPSsy1vqQFNLDZ6qI8rPoDrqD82w-UJ57MExitpSsgxmCgJf_FIZDScNZcA1pUq4oEDZK4g2zyj_-oFYqJTwtpaIulaJhbjsqXR3hHmAP_LUPmRZ03RznQmZu540hIuYQKl4vBSHulxA47jNQ7wDatRlP-YfeJo87TtvyWV3ceT9B_7SccjoXcethlg_GKVf9dced9x7H5mSyg1mrqHXTcinCVKSUe7fJmlDExf2Pm6zWQ=N; .AspNet.OpenIdConnect.State.DvAaU29BzRCuXNG1HdpsWKTrNhZNBy-22mFSiPKUncg=N; .AspNet.OpenIdConnect.Nonce.CfDJ8B2egGQRAM9LolZKpOmaYb_ndb-aJvQlBuzlnZSXsHcSb7QdRRUQI9M40baUYAhGoJCKIJt6dwjQX3ZMEGtVP-kjWqX1k0Em_hyYGKgnYz-u0xommMF164a8NDyX94kRf6oM_A42cIOuQXwTIDJHQe04nG-0Vg0gBchDUSCRzR_H6LvBMN6rUNU9sqlNcdijlRUEmlw_Jvkz5qaRqjnxfOP3aAH-OygKb2iHd5zjqupWFsqu40kI8KXcA4WbI0XSX87AGd8OBN_W_iglZbE_OuU=N; .AspNet.OpenIdConnect.State.4U50VSkQw9PBayyTybaFPnyRlT9M0pvZf1pkKZcFEMs=N; .AspNet.OpenIdConnect.Nonce.CfDJ8B2egGQRAM9LolZKpOmaYb_HRbREH4enj_1Z2eC9TNUk-bNFhcpAU6akKUC0yqc20Qf80QfUJPX6gtR8blndSzGkdUn4vUE_zJ4KRCFznLteYBLbVLx3uOE-xj6dVvL6PRI5soe0IZKtYP0YKc6KN46xFKZp9NGG-Vx-T_BA5rpUUMCxqiUHHMdY9-hD9ZkzG17cIz-aNvTcgsq0PpkV_9L_fNMzP0-l-14pdgsC6sma1uJXmfiES0PbTlvjBeNJ7L5pywLG2S1IHD4LtT6tBpI=N; .AspNet.OpenIdConnect.State.cF3VN1FKFAlDwKWqKaAemrBU2Yh_e6D-A46sLbM-ciI=N; .AspNet.OpenIdConnect.Nonce.CfDJ8B2egGQRAM9LolZKpOmaYb-j0mVs6swSvkdQYKBwsMIJX0jjoG6o-QU-ho1WgvY1QsKwgWwyaJXwXON7PfJe7rmyfrGMrX75A1eYMhh4kPdHD034NjnDKgmrsGZ9-9d68FJ9mZ3NaleEG8u6hrpCKSqgb4dt4CY_l9v-UuVNrCTBRnDY5wowA534Ll6z0T7npYe_qIy4mFzxlOs03bljcJUa89PYagbVYJm5vRbsdAgMLquJxdzzkOxJYuFrJtPjxmUpF9jJ7vDh3NKf11fWiiw=N; .AspNet.OpenIdConnect.State.MD2PQiu94VyyQ2evya05bg5Iv5XUaJ0f1eKIqsgtCyg=N; .AspNet.OpenIdConnect.Nonce.CfDJ8B2egGQRAM9LolZKpOmaYb8h3JAsilBb0-P34ATWl-To74LLixEG_v3xYQrTnfsrlrKEuDjvG-b-uOpgUlb2VP95lMSbnNZJL9VUJN_Iq3c08fVBK8LBb9Ygi6_Oicv6sd9sr_dgzi3kAWCupLdAhmhtjixDUHdybyxMlRLRIBenv5NyaKh9jO58I-nsF3uoXI8jRLM0F7DTjyYw5OXmV3CyD7cz922zhCnromN6jYtQApTJxBEn_9AcA3i5oT13SdpwN6nOYBZxGz51zM5jHvA=N; .AspNet.OpenIdConnect.State.jcCnSzGDSSuCcQwmSgAeSQHkJ-HUuJSEX1tMt2yUR14=N; .AspNet.OpenIdConnect.Nonce.CfDJ8B2egGQRAM9LolZKpOmaYb-TLwQ9Wq0LwLgnBs3-bMfgLbDkePLyMjGKSq-5ZJ3dOVC1UVi3EaftKGfOOXMiVWFtzUnldVBaT2YHPmHsjXOwBI1wdZCqEs9-Cbhr6sQMLHnoNXHWTIG4QbYbNAyryD3kIEqEwRo8rDO-X1T6QD6KGqOgpzWlnu2RxjrWTMDSjeU2OKOv8b2E4dQsImwhOuC8hgGCeosp6kiNU9l58uqxMJwHjhRPIJcp0TQAYLTytRdZ2TIDRZgLYBDRFnUKgco=N; .AspNet.OpenIdConnect.State.c78eYrQ0suVu4bFNyHq1451zvlsWr1j1-ExQUcYmZIQ=N; .AspNet.OpenIdConnect.Nonce.CfDJ8B2egGQRAM9LolZKpOmaYb8McN2qXAjWBvK0GT8F3xSrSYZUmTw1ABzqEDnoLozQKBbvhwTdUOkbBu2KXCLPcVj-X70Jv0biLhyTOFAw4s91b3Q2m45IP4Iw2sLRkiQzTes8lk7jZBVPGi7t-_ywCpV0OVmiT7n6sfl8168dKRWzG-yDeXPAIZf-pR3VhUnHldEHPobeEkZpNiqauMYEW8SjeQfNdZpOXB3uJpOatbAdydrA9L96qoGpyWBrxDF8o9rIN7KZR2St0vECrPRuhKA=N; .AspNet.OpenIdConnect.State.QnXv5QcH8jzTEWus3MqxBC10pC4DZceHjaVyxmXuIFs=N; .AspNet.OpenIdConnect.Nonce.CfDJ8B2egGQRAM9LolZKpOmaYb-RoVZ4U55dPl_yEwuqAxicgo-AhIu1tVtDw7BOGB1FXZ_LuPj20jrzVSENfxfUpvOzwLFt1aZwQC0aJprZY5QhURYrXBapAupwpLJzoFhAysQvlR3QtVMtWXsl02dNJHMGTNkszyxqxmf7hgP2YJblAdvy8XgEARCNPW_0wkevm1WLqUELxYvWiQjlfCP4VcEnFEtElPYDEbaKLYRoQZdvvNLl8_cdkKXMsvgdp2J43DY5CgPTYdfIr-MtAvu75os=N; .AspNet.OpenIdConnect.State.zR54e2pfWL9KAWbfU_QUafLoq_oahvEVeLfl4MlDMtw=N; .AspNet.OpenIdConnect.Nonce.CfDJ8B2egGQRAM9LolZKpOmaYb_Y_LupwQArzS3QFdj6I_pnO3ydOIt7fLr1rCeKg9hFCUKpnbkD7bAbyyMIZ7zJIXWR-4VfaBw4kmRGmn5rUpTrrAqxM95uwI4d-cbq8SzMoBCLUvUjF1y4MULE7IyV0EDS_0olrsFYKU7ncTRWcbU9Z1TYNDVtGTZetkYov9q_BtJ367_jOiIUT1TqgMtfX8VwbH-KG3FTzJeqzxmx68HA5XBvERipkyavbwGT26qHaYPB4chN-sExuODP0S_psXY=N; .AspNet.OpenIdConnect.State.hBEQqOziBcftMdzaohukxyXclM7wJLVPeEmGRAsmwLI=N; .AspNet.OpenIdConnect.Nonce.CfDJ8B2egGQRAM9LolZKpOmaYb9dZMnacJPJv29n7Oga7PoFHGlF8ptjGgx985msPusolX8F30fioIlDPKCZuS0kiGsRNo3_7KP9xiBWtcR_wCBEugDWW_3cv9bV2NXRhO0OOb5DEJMZEx24VNlXaRmLdepEAvGRhwwszgXJUYzuNfboKvWyOgVUx8wnnxVFxMmpOB5qzCzJbiqan8IM3ZmaKJtfF5C4eY3V1n-daPEb4aXuTHiK1gb8unVSoGX7rw9qiDyhtuN8p5uEi3BhaEQmuEU=N; .AspNet.OpenIdConnect.State.rF5lxR9w5pQUdv9zKTYpeskArQHUcWq8XFyenQD1UKM=N; .AspNet.OpenIdConnect.Nonce.CfDJ8B2egGQRAM9LolZKpOmaYb9BkPhTYCNzO6GN6SXn3Bj_H1bFGigGD333ZcjItItjAktHNM5mjOjT-YlEwP5RsEZtt1y4H1_kJn76873R2bSsyhaNEtycMsrEoRNbD4Wuh_fXa8byQD-WW2h4suvMkMDxswnnuGqFPeXxVZ9gacSRhLxaBvYNDBLVEfafzhda45V2aX0fcUw9gLgFJMtu8xxwfwLi9esEWakC_Ly_9IFY6YqBme7oJG6canrGTPIPLox97AGIdaqiXSXGUYCJJpE=N; .AspNet.OpenIdConnect.State.SEXjOHNQBVo2jmDQNYxOCcV7h_Mn1kdsE7jJQAiZ_1M=N; .AspNet.OpenIdConnect.Nonce.CfDJ8B2egGQRAM9LolZKpOmaYb-jwsw-9WpxOk5vu4790ianLpyx31QONrk9UdO-IuS4CUg9c9p8kNT7FRE4DysEryXFTdOnBGcrKQSqZHxobXtXQ1Mquygj2SEtDcsDT-yoGLWE4ObH_aNRRzImGSu_lKs5qwXaUbtC3CVPnUD__HwhJrx__iI6Wny0Fyil7MShzYMWqOQPlOEbz7R3dvjggBWqZKw__qCHvLzfjcn7bq2MC93viUsbCqEFQ1o3GP0Z70NNkNDh9JczdCgSiEqm2eU=N; .AspNet.OpenIdConnect.State.XkgZ9rhO06W13yxG79x6vk0Da__oWvO5ljl2SXuvnQU=N; .AspNet.OpenIdConnect.Nonce.CfDJ8B2egGQRAM9LolZKpOmaYb9KZb3WcV3owYZxFreJPjrLYRPaAl8CF54o0VkBJ_iJqshsNLz6zbH_X4A-7zGnUJo9a9JwFQi1Vyrhmfd8X0qLeS4UTrZ6wzbqOMR11YYMdmdG1rlw4rn3Nmch8TZJLzKmam5gyDMBlEsqjSMsia8BgrG_7GEVy5EF3CIV62WHhaHDAdnvFR3iCQDNAVE4dgcXciUX8BI1Vj4oH_pzaoCJArkY_7kQSOYHasH583x59nUSI_kkZr03NBGxDl2gGTs=N; .AspNet.OpenIdConnect.State.mnTeuXEFq9VIoc2XWUUyOFpnIwkQ-3H3f6mQk8xEtS4=N Host:localhost:53000

from identityserver4.

This seems to be an issue in IISExpress, in IIS 10 (Windows 10) works ok.

from identityserver4.

This thread has been automatically locked since there has not been any recent activity after it was closed. Please open a new issue for related bugs.

from identityserver4.