days ago.

Find Numbers In A C# String

Khalid Abuhakmeh

Data can often be messy and cleaning it up falls on the shoulders of you, the developer. It’s also easy to search StackOverflow for compl...

development

Read now

days ago.

EF's lazy-loading might break your reality when m...

Bill Boga

Referencing nested objects in your LINQ to SQL query does some pretty neat magic “behind the scenes”. But, there are occasions when its m...

EF SQL

Read now

days ago.

Stuntman 2.0 Unifies Packages and Supports ASP.NE...

Ken Dale

The RimDev.Stuntman NuGet package has reached version 2.0! Unified package with ASP.NET Core 2.0 Support Both ASP.NET full framework an...

OSS

Read now

days ago.

The Pros and Cons of State Management

Jaime Jones

Let’s talk about state management for a minute. There’s recently been a bunch of hubub about Redux on Twitter, and arguments about the us...

Web Vue Vuex JavaScript StateManagement

Read now

days ago.

Communicating between components in separate scopes

Jaime Jones

Here at RIMdev, we are big fans of Vue.js, as we’ve written about before. It scales well and is very versatile whether you’re starting up...

Web Vue JavaScript

Read now

days ago.

Announcing Organizational Backing For IdentityServer

Ken Dale

At Ritter Insurance Marketing we value our peers and other organizations in the overall software community. We believe in the power of c...

OSS

Read now

days ago.

Vue Import Paths

Andrew Rady

In today’s front-end ecosystem we are breaking down code into separate files and importing them. This helps us separate out code and reus...

Web Vue JavaScript Webpack

Read now

days ago.

Be Careful Of Sinking In Elasticsearch Deep Pagin...

Khalid Abuhakmeh

Software development is a funny thing. As I develop my skills, I begin to form an idea of what’s right and wrong, what’s up and down. Thi...

elasticsearch

Read now

days ago.

.NET Full Framework: Build, Test, and Deploy Usin...

Ken Dale

At Ritter Insurance Marketing we have a number of repositories, each with separate continuous integration builds. This is a base setup f...

.NET Cake AppVeyor

Read now

days ago.

How child components can respond to store actions

Jaime Jones

At RIMdev, I spend most of my time writing Vue components. And I love it. But sometimes there’s unique problems that can be encountered w...

Web Vue JavaScript

Read now

days ago.

Back To Basics: HTML Forms

Khalid Abuhakmeh

In the whirlwind that is modern web development, I thought it would be a great idea to revisit one of the fundamental parts that make the...

HTML Web

Read now

days ago.

Optimizing LINQ to SQL Skip/Take

Bill Boga

Picture a scenario where you want to page a large dataset and your LINQ statement has several Include-calls. The first few pages load fai...

.NET SQL Server LINQ

Read now

days ago.

Spinning up a local server with gulp

Kevin Hougasian

Setting up a local server comes in many flavours today. My goto was the Apache vhost.conf/hosts combo, now to load something quickly - Gu...

gulp

Read now

days ago.

RIMdev Hacktoberfest 2017

Khalid Abuhakmeh

[Hacktoberfest 2017][hacktoberfest] is upon us and now is a great opportunity to contribute to open source and the community as a whole. ...

OSS

Read now

days ago.

Why Does window.exports Unexpectedly Exist?

Ken Dale

We ran across an issue where window.exports was being unexpectedly set. The cause <div id="exports"> ... </div> Why? I...

JavaScript

Read now

days ago.

DbDataReader and SQL Server Data Chunking

Bill Boga

TL;DR Using ExecuteReader against SQL Server with a query using for xml or for json causes data to be chunked. A single call to ExecuteR...

.NET .NET Core 2.0 JSON XML SQL Server

Read now

days ago.

Why We Use Nullables On Our ASP.NET Web API 2 Req...

Khalid Abuhakmeh

At Ritter Insurance Marketing, we continue to invest heavily in Web APIs primarily built on top of ASP.NET Web API 2. To supplement our A...

asp.net WebAPI REST

Read now

days ago.

css prefixes, yes pleeease

Kevin Hougasian

If you CSS, you’re familiar with the browser -prefix. Chrome and Safari have -webkit, -moz for Firefox/Mozilla, and -ms for Edge. As brow...

css

Read now

days ago.

Material design-like form animations for Semantic UI

Kevin Hougasian

We decided not to use Material Design (#reasons) while re-developing our core application suite, although i really miss MD’s micro-intera...

UI Sass Semantic UI

Read now

days ago.

Avoid the Duplicate AppVeyor Publish: Deploying O...

Ken Dale

Sometimes it’s useful to ensure a project works with multiple versions of runtimes. In the following example, multiple versions of Node.j...

AppVeyor

Read now

Windows Azure, IdentityServer3, and Valid Issuers

Written by Khalid Abuhakmeh |Bill Boga |Ken Dale

This post is days old.

At Ritter Insurance Marketing, we utilize IdentityServer3 for our authentication mechanism. It has been almost a year of hosting in Windows Azure with great success. While it has been a positive experience, but there has been one frustrating issue. Unpredictably, our authentication system would break, leaving our applications inaccessible. We started noticing a specific exception in our error log when these events would occur:

System.IdentityModel.Tokens.SecurityTokenInvalidIssuerException

IDX10205: Issuer validation failed. Issuer: 'https://auth.ritterim.com/identity'.  \
Did not match: validationParameters.ValidIssuer: 'null' or validationParameters.ValidIssuers: \
'https://auth.ritterim.com/, https://rim-auth-east.azurewebsites.net/identity'.

We have noticed that the Issuer url value being provided by an authentication request changes randomly in Windows Azure. The unknown bug causes our applications to break. While the change is random, the expected issuer urls are not. We have narrowed it down to these known variations.

https://{custom domain name}.com
https://{custom domain name}.com/identity
https://{azure app name}.azurewebsites.net
https://{azure app name}.azurewebsites.net/identity

To setup the valid issuers for IdentityServer3, we just use the APIs provided by the library.

app.UseOpenIdConnectAuthentication(new OpenIdConnectAuthenticationOptions
{
    // other settings...
    TokenValidationParameters = new TokenValidationParameters()
    {
        AuthenticationType = "Cookies",
        // a comma seperated list of urls
        ValidIssuers = config.ValidIssuers
    }
    // other settings...
});

We hope we’ve found all the variations, and for the last several weeks our authentication has become a lot more stable. I hope this helps anyone experiencing issues with IdentityServer3 and Windows Azure.

Published Jan 16, 2016 by