7

我正在尝试设置一个简单的 Oauth2 登录身份验证。但是我被困在抛出以下异常的回调中:

   [ProtocolException: Unexpected OAuth authorization response received with callback and client state that does not match an expected value.]
   DotNetOpenAuth.Messaging.ErrorUtilities.VerifyProtocol(Boolean condition, String unformattedMessage, Object[] args) +426
   DotNetOpenAuth.OAuth2.WebServerClient.ProcessUserAuthorization(HttpRequestBase request) +771

这里讨论了完全相同的问题

在我的情况下,SessionID 保持不变,但 DotNetOpenAuth.WebServerClient.XSRF-Session cookie 在回调时更改了它的值。

执行:

    public void Authorize(HttpRequest request)
    {
        string callbackString = request.Url.AbsoluteUri;
        Uri callbackUri = new Uri(callbackString);;

        IAuthorizationState authorization = nimbleClient.ProcessUserAuthorization();

        if (authorization == null)
        {
            // Kick off authorization request
            nimbleClient.RequestUserAuthorization(returnTo: callbackUri);
        }
        else
        {
            //Get AccesToken
            Uri.EscapeDataString(authorization.AccessToken);
        }
4

1 回答 1

0

您是否将 cookie 声明为常量,如下所示:

private const string XsrfCookieName = "DotNetOpenAuth.WebServerClient.XSRF-Session"

即使在回调时,这也将有助于保持该值。

于 2015-01-08T06:43:11.580 回答