Solucionado
Ao tentar fazer o login de usuário com o identity server 4 logo ao final do curso, o mesmo me encaminha para a página /home/error apresentando o erro a seguir:
Error Sorry, there was an error : invalid_request code challenge required Request Id: 0HM1ED6DEBIBJ:00000002
Config.cs no projeto IdentityServer4
public static class Config
{
public static IEnumerable<IdentityResource> IdentityResources =>
new IdentityResource[]
{
new IdentityResources.OpenId(),
new IdentityResources.Profile(),
};
public static IEnumerable<ApiScope> ApiScopes =>
new ApiScope[]
{
new ApiScope("scope1"),
new ApiScope("CasaDoCodigo.RelatorioWebApi"),
};
public static IEnumerable<Client> Clients =>
new Client[]
{
// m2m client credentials flow client
new Client
{
ClientId = "m2m.client",
ClientName = "Client Credentials Client",
AllowedGrantTypes = GrantTypes.ClientCredentials,
ClientSecrets = { new Secret("511536EF-F270-4058-80CA-1C89C192F69A".Sha256()) },
AllowedScopes = { "scope1" }
},
// interactive client using code flow + pkce
new Client
{
ClientId = "CasaDoCodigo.MVC",
ClientName = "Casa Do Codigo",
ClientSecrets = { new Secret("49C1A7E1-0C79-4A89-A3D6-A37998FB86B0".Sha256()) },
AllowedGrantTypes = GrantTypes.HybridAndClientCredentials,
RedirectUris = { "http://localhost:5001/signin-oidc" },
FrontChannelLogoutUri = "http://localhost:5001/signout-oidc",
PostLogoutRedirectUris = { "http://localhost:5001/signout-callback-oidc" },
AllowOfflineAccess = true,
AllowedScopes = { "openid", "profile", "email", "CasaDoCodigo.RelatorioWebApi" }
},
};
}Startup.cs no projeto MVC
public class Startup
{
private readonly ILoggerFactory _loggerFactory;
public Startup(ILoggerFactory loggerFactory, IConfiguration configuration)
{
_loggerFactory = loggerFactory;
Configuration = configuration;
}
public IConfiguration Configuration { get; }
// This method gets called by the runtime. Use this method to add services to the container.
public void ConfigureServices(IServiceCollection services)
{
services.AddLogging(loggingBuilder => loggingBuilder.AddSerilog(dispose: true));
services.AddMvc();
services.AddDistributedMemoryCache();
services.AddSession();
string connectionString = Configuration.GetConnectionString("Default");
services.AddDbContext<ApplicationContext>(options =>
options.UseSqlServer(connectionString)
);
services.AddTransient<IDataService, DataService>();
services.AddTransient<IHttpContextAccessor, HttpContextAccessor>();
services.AddTransient<IHttpHelper, HttpHelper>();
services.AddTransient<IProdutoRepository, ProdutoRepository>();
services.AddTransient<IPedidoRepository, PedidoRepository>();
services.AddTransient<ICadastroRepository, CadastroRepository>();
services.AddTransient<IRelatorioHelper, RelatorioHelper>();
services.AddHttpClient<IRelatorioHelper, RelatorioHelper>();
JwtSecurityTokenHandler.DefaultInboundClaimTypeMap.Clear();
services.AddAuthentication(options =>
{
// forma de autenticação local
options.DefaultScheme = "Cookies";
// protocolo que define o fluxo da autenticação
options.DefaultChallengeScheme = "oidc";
})
.AddCookie("Cookies")
.AddOpenIdConnect("oidc", options =>
{
options.Authority = Configuration["CasaDoCodigo.IdentityServer4Url"];
options.RequireHttpsMetadata = false;
options.ClientId = "CasaDoCodigo.MVC";
options.ClientSecret = "49C1A7E1-0C79-4A89-A3D6-A37998FB86B0";
options.ResponseType = "code id_token";
options.SaveTokens = true;
options.GetClaimsFromUserInfoEndpoint = true;
});
}
public void Configure(IApplicationBuilder app, IHostingEnvironment env,
IServiceProvider serviceProvider)
{
_loggerFactory.AddSerilog();
if (env.IsDevelopment())
{
app.UseBrowserLink();
app.UseDeveloperExceptionPage();
}
else
{
app.UseExceptionHandler("/Home/Error");
}
app.UseStaticFiles();
app.UseAuthentication();
app.UseSession();
app.UseMvc(routes =>
{
routes.MapRoute(
name: "default",
template: "{controller=Pedido}/{action=BuscaProdutos}/{codigo?}");
});
var dataService = serviceProvider.GetRequiredService<IDataService>();
dataService.InicializaDBAsync(serviceProvider).Wait();
}
}Startup.cs no projeto RelatorioWebApi
public class Startup
{
public Startup(IConfiguration configuration)
{
Configuration = configuration;
}
public IConfiguration Configuration { get; }
// This method gets called by the runtime. Use this method to add services to the container.
public void ConfigureServices(IServiceCollection services)
{
services.AddMvc().SetCompatibilityVersion(CompatibilityVersion.Version_2_2);
services.AddAuthentication("Bearer")
.AddIdentityServerAuthentication(options =>
{
options.ApiName = "CasaDoCodigo.RelatorioWebApi";
options.ApiSecret = "49C1A7E1-0C79-4A89-A3D6-A37998FB86B0";
options.Authority = Configuration["IdentityServer4Url"];
options.RequireHttpsMetadata = false;
});
}
// This method gets called by the runtime. Use this method to configure the HTTP request pipeline.
public void Configure(IApplicationBuilder app, IHostingEnvironment env)
{
if (env.IsDevelopment())
{
app.UseDeveloperExceptionPage();
}
app.UseAuthentication();
app.UseMvc();
}
}Downgrade nos pacotes do IdentityServer.