Getting Authorization has been denied for this request on Azure but works locally

rappelzslave1x · October 18, 2017, 10:36am

I have been working with Auth0 on my Web API and ASP .NET MVC. Recently I decided to upload my Web API and MVC application to Azure. However, The Web API keeps replying “Authorization has been denied for this request” but it works fine when it runs in visual studio. Tested with postman and fiddler.

UPDATE:

I am using asp.net web api (owin), this is my configuration in the startup.cs:

public void Configuration(IAppBuilder app)
    {
        var domain = $"https://{ConfigurationManager.AppSettings"Auth0Domain"]}/";
        var apiIdentifier = ConfigurationManager.AppSettings"Auth0ApiIdentifier"];

        var keyResolver = new OpenIdConnectSigningKeyResolver(domain);
        app.UseJwtBearerAuthentication(
            new JwtBearerAuthenticationOptions
            {
                AuthenticationMode = AuthenticationMode.Active,
                TokenValidationParameters = new TokenValidationParameters()
                {
                    ValidAudience = apiIdentifier,
                    ValidIssuer = domain,
                    IssuerSigningKeyResolver = (token, securityToken, identifier, parameters) => keyResolver.GetSigningKey(identifier)
                }
            });

        // Configure Web API            
        WebApiConfig.Configure(app);
    }

jmangelo · October 18, 2017, 4:33pm

The information provided is insufficient to troubleshoot the situation (unless someone else already experienced the exact same thing). The recommendation would be for you to update your question with additional information. For example, how the Web API is configured in terms of authorizing the request, any additional data about the error (stacktraces), a sample access token (assuming JWT be sure to not include the signature and if you deem any information within it sensitive also please redact it).

rappelzslave1x · October 19, 2017, 5:36am

In case someone else have this problem the solution is here: base.IsAuthroized is false, but not when debugged locally · Issue #283 · IdentityServer/IdentityServer3.Samples · GitHub

jmangelo · October 19, 2017, 10:19pm

Glad you found the culprit; it was a really subtle issue based on that issue.

Topic		Replies	Views
OWIN Web Auth Identifier Bug Help jwt , auth0 , api	9	6732	December 17, 2018
I'm Receiving An 'Unauthorized' Response When Trying to Access my WebAPI using the IdentityToken as my Bearer token Help net	5	10481	September 3, 2019
Porting ASP.NET MVC app to Core, problems with Auth0 jwt auth JWT.io aspnet-core	5	5139	September 11, 2019
Receiving 401 Unauthorized when testing web api using Implicit Grant Help implicit-grant , owin , authorization , webapi , 401	2	5739	December 14, 2018
Webapi Owin Example is not Working Help owin	3	7864	March 27, 2018

Getting Authorization has been denied for this request on Azure but works locally

Related Topics