https://community.qlik.com/t5/App-Development/Net-C-AspNetCore-MVC-SSO-with-OpenIdConnect-returning-IDX10000/m-p/2492867#M102252 <P>After doing some testing and creating a CustomOpenIdConnectHandler (not recommended), I see that in the OpenIdConnect event&nbsp; "OnTokenResponseReceived",&nbsp;TokenResponseReceivedContext.ProtocolMessage.IdToken is null.&nbsp;</P> <P>Yet when I update my appsettings.json to use my Azure AD App Registration settings, IdToken is not null. I think I'm missing something on Qlik's configuration side ?</P> Thu, 14 Nov 2024 23:48:01 GMT h4ck3r8ug5 2024-11-14T23:48:01Z https://community.qlik.com/t5/App-Development/Net-C-AspNetCore-MVC-SSO-with-OpenIdConnect-returning-IDX10000/m-p/2492843#M102251 <P>Hi there,</P> <P><SPAN>I have AspNetcore MVC web app doing SSO using the nuget package OpenIdConnect. I using an web client type (from Qlik Cloud).</SPAN></P> <P><SPAN>I'm very new to Qlik but very familar with OAuth and C#.</SPAN></P> <P><SPAN>What I'm trying to do is create a login page that performs sso against Qlik and when the call returns, print out Claims from the ClaimsPrincipal. I've done this on multiple occasions with KeyCloak, Azure AD but when it comes to Qlik, I'm getting the error:</SPAN></P> <P><SPAN>"ArgumentNullException: IDX10000: The parameter 'token' cannot be a 'null' or an empty object. (Parameter 'token')"</SPAN></P> <P>My client is configured to Web and I've added <A href="https://localhost:5001/signin-oidc" target="_blank" rel="noopener">https://localhost:5001/signin-oidc</A>&nbsp;to the Return URL and <A href="https://localhost:5001" target="_blank" rel="noopener">https://localhost:5001</A>&nbsp;to the Origins.</P> <P>This is the URL in the browser after the call comes back from Qlik (Thiis is an old auth code)<BR /><A href="https://localhost:5001/signin-oidc?code=1Na9rXYSwYtUQ50a5z29VjNYktiBKWRYx7S8j_cjbSk&amp;state" target="_blank" rel="noopener">https://localhost:5001/signin-oidc?code=1Na9rXYSwYtUQ50a5z29VjNYktiBKWRYx7S8j_cjbSk&amp;state</A></P> <P>Snippet of my C# program.cs code:</P> <P>builder.Services.AddAuthentication(options =&gt;<BR />{<BR />options.DefaultScheme = "Cookies";<BR />options.DefaultChallengeScheme = OpenIdConnectDefaults.AuthenticationScheme;<BR />})<BR />.AddCookie("Cookies")<BR />.AddOpenIdConnect(OpenIdConnectDefaults.AuthenticationScheme, config =&gt;<BR />{<BR />config.Authority = builder.Configuration["OAuth:Authority"];<BR />config.ClientId = builder.Configuration["OAuth:ClientId"];<BR />config.ClientSecret = builder.Configuration["OAuth:ClientSecret"];<BR />config.ResponseType = OpenIdConnectResponseType.Code;<BR />config.SaveTokens = true;</P> <P>config.Scope.Clear();<BR />foreach (var scope in builder.Configuration.GetSection("OAuth:Scopes").GetChildren())<BR />{<BR />config.Scope.Add(scope.Value);<BR />}</P> <P>config.CallbackPath = builder.Configuration["OAuth:CallbackUri"];<BR />config.GetClaimsFromUserInfoEndpoint = true;</P> <P>Can anyone assist with some guidance?</P> <P>Thanks,</P> <P>Charles</P> Thu, 14 Nov 2024 22:05:03 GMT https://community.qlik.com/t5/App-Development/Net-C-AspNetCore-MVC-SSO-with-OpenIdConnect-returning-IDX10000/m-p/2492843#M102251 h4ck3r8ug5 2024-11-14T22:05:03Z https://community.qlik.com/t5/App-Development/Net-C-AspNetCore-MVC-SSO-with-OpenIdConnect-returning-IDX10000/m-p/2492867#M102252 <P>After doing some testing and creating a CustomOpenIdConnectHandler (not recommended), I see that in the OpenIdConnect event&nbsp; "OnTokenResponseReceived",&nbsp;TokenResponseReceivedContext.ProtocolMessage.IdToken is null.&nbsp;</P> <P>Yet when I update my appsettings.json to use my Azure AD App Registration settings, IdToken is not null. I think I'm missing something on Qlik's configuration side ?</P> Thu, 14 Nov 2024 23:48:01 GMT https://community.qlik.com/t5/App-Development/Net-C-AspNetCore-MVC-SSO-with-OpenIdConnect-returning-IDX10000/m-p/2492867#M102252 h4ck3r8ug5 2024-11-14T23:48:01Z