Getting Authorization has been denied for this request on Azure but works locally

rappelzslave1x · October 18, 2017, 10:36am

I have been working with Auth0 on my Web API and ASP .NET MVC. Recently I decided to upload my Web API and MVC application to Azure. However, The Web API keeps replying “Authorization has been denied for this request” but it works fine when it runs in visual studio. Tested with postman and fiddler.

UPDATE:

I am using asp.net web api (owin), this is my configuration in the startup.cs:

public void Configuration(IAppBuilder app)
    {
        var domain = $"https://{ConfigurationManager.AppSettings"Auth0Domain"]}/";
        var apiIdentifier = ConfigurationManager.AppSettings"Auth0ApiIdentifier"];

        var keyResolver = new OpenIdConnectSigningKeyResolver(domain);
        app.UseJwtBearerAuthentication(
            new JwtBearerAuthenticationOptions
            {
                AuthenticationMode = AuthenticationMode.Active,
                TokenValidationParameters = new TokenValidationParameters()
                {
                    ValidAudience = apiIdentifier,
                    ValidIssuer = domain,
                    IssuerSigningKeyResolver = (token, securityToken, identifier, parameters) => keyResolver.GetSigningKey(identifier)
                }
            });

        // Configure Web API            
        WebApiConfig.Configure(app);
    }

jmangelo · October 18, 2017, 4:33pm

The information provided is insufficient to troubleshoot the situation (unless someone else already experienced the exact same thing). The recommendation would be for you to update your question with additional information. For example, how the Web API is configured in terms of authorizing the request, any additional data about the error (stacktraces), a sample access token (assuming JWT be sure to not include the signature and if you deem any information within it sensitive also please redact it).

rappelzslave1x · October 19, 2017, 5:36am

In case someone else have this problem the solution is here: base.IsAuthroized is false, but not when debugged locally · Issue #283 · IdentityServer/IdentityServer3.Samples · GitHub

jmangelo · October 19, 2017, 10:19pm

Glad you found the culprit; it was a really subtle issue based on that issue.

Topic		Replies	Views
Porting ASP.NET MVC app to Core, problems with Auth0 jwt auth JWT.io aspnet-core	5	5137	September 11, 2019
What to do since Auth0.OpenIdConnectSigningKeyResolve is now unlisted? JWT.io	10	7328	February 12, 2020
Valid access token still getting a 401 Help jwt , dotnet-core	6	28280	March 2, 2018
ASP.Net Web API Tutorial Help spa , aspnet , webapi	2	5999	March 2, 2018
InvalidOperationException: IDX20803: Unable to obtain configuration from Help	3	6603	June 19, 2024

Getting Authorization has been denied for this request on Azure but works locally

Related Topics