本文介绍了ASP.NET MVC5 OWIN Facebook验证突然不工作的处理方法,对大家解决问题具有一定的参考价值,需要的朋友们下面随着小编来一起学习吧!


我有被使用MVC5 Web应用程序的内置通过Facebook和谷歌认证的支持。当我们建立了这个应用程式在几个月前,我们跟着这个教程:http://www.asp.net/mvc/tutorials/mvc-5/create-an-aspnet-mvc-5-app-with-facebook-and-google-oauth2-and-openid-sign-on一切伟大的工作。

I've got an MVC5 Web application which is using the built-in support for authentication via Facebook and Google. When we built this app a few months ago, we followed this tutorial: http://www.asp.net/mvc/tutorials/mvc-5/create-an-aspnet-mvc-5-app-with-facebook-and-google-oauth2-and-openid-sign-on and everything worked great.


Now, all of a sudden, the Facebook authentication has just stopped working alltogether. The Google authentication still works great.


Description of the problem: We click the link to connect using Facebook, we are redirected to Facebook where we are prompted if we wan't to allow our Facebook app access to our profile. When we click "OK" we are redirected back to our site, but instead of being logged in we simply end up at the login screen.


I've gone through this process in debug mode and I've got this ActionResult in my account controller as per the tutorial mentioned above:

// GET: /Account/ExternalLoginCallback
public async Task<ActionResult> ExternalLoginCallback(string returnUrl)
    var loginInfo = await AuthenticationManager.GetExternalLoginInfoAsync();
    if (loginInfo == null)
        return RedirectToAction("Login");


When stepping through the code and upon returning from Facebook, the loginInfo object is always NULL, which causes the user to be redirected back to the login.


In order to understand what is actually happening behind the scenes, I installed Fiddler and monitored the HTTP traffic. What I disovered is that upon clicking "OK" at the Facebook permission dialog, Facebook redirects back to our application with this URL:



This URL is not an actual file and probably handled by some controller/handler built into this OWIN framework I'm guessing. Most likely, it is connecting back to Facebook using the given code to query information about the user which is trying to login. Now, the problem is that instead of doing that, we are redirected to:



Which I'm sure is something Facebook is doing, that is, instead of giving us the user data, it's redirecting us back with this error message.

这使得 AuthenticationManager.GetExternalLoginInfoAsync(); 失败,总是返回NULL

This causes the AuthenticationManager.GetExternalLoginInfoAsync(); to fail and always return NULL.


I'm completely out of ideas. As far as we know, we did not change anything on our end.


I've tried creating a new Facebook app, I've tried following the tutorial again but I always have the same problem.



OK,这是推动我疯了!现在我已经通过手动执行身份验证所需的步骤走了,一切都很正常,当我做到这一点。为什么地球上是使用MVC5 Owin东西时,这个不工作?

OK, this is driving me insane! I've now manually gone through the steps required to perform the authentication and everything works great when I do that. Why on earth is this not working when using the MVC5 Owin stuff?


    // Step 1 - Pasted this into a browser, this returns a code

I was redirected back to localhost (which I had shut down at this point to avoid being redirected immediately away).  The URL I was redirected to is this:


Now, I grabbed the code I got and used it in the URL below:

// Step 2 - opened this URL in a browser, and successfully retrieved an access token

// Step 3 - Now I'm able to query the facebook graph using the access token from step 2!


没有错误,一切都很正常!那么,为什么这到底是使用MVC5 Owin东西时,这个不工作?有一些明显错误的OWin实施。

No errors, everything works great! Then why the hell is this not working when using the MVC5 Owin stuff? There's obviously something wrong with the OWin implementation.



Ok I've got a solution to the problem.

这是code我有pviously $ P $在我Startup.Auth.cs文件:

This is the code I had previously in my Startup.Auth.cs file:

var x = new FacebookAuthenticationOptions();
            x.AppId = "1442725269277224";
            x.AppSecret = "<secret>";
            x.Provider = new FacebookAuthenticationProvider()
                OnAuthenticated = async context =>
                        //Get the access token from FB and store it in the database and
                    //use FacebookC# SDK to get more information about the user
                    context.Identity.AddClaim(new System.Security.Claims.Claim("FacebookAccessToken",context.AccessToken));
                    context.Identity.AddClaim(new System.Security.Claims.Claim("urn:facebook:name", context.Name));
                    context.Identity.AddClaim(new System.Security.Claims.Claim("urn:facebook:email", context.Email));
            x.SignInAsAuthenticationType = DefaultAuthenticationTypes.ExternalCookie;




line has been commented out, but still I'm query-ing for the e-mail later in the OnAuthenticated handler? Yup, that's right. For some reason this worked flawlessly for a few weeks.


My solution was to simply uncomment the x.Scope.Add("email"); line to make sure that the scope=email variable was present in the initial request to Facebook.


Now everything works like it did!


I cannot understand why this worked before like it was. The only explanation I can come up with is that Facebook changed something on their end.

这篇关于ASP.NET MVC5 OWIN Facebook验证突然不工作的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持!

08-21 07:17