TAGS :Viewed: 2 - Published at: a few seconds ago

[ Google login works on localhost and test server, but not azure website (app service) ]

I am having a problem with signing in users with google on an Azure website using OWIN. Everything works fine localhost and on our test server, but when I deploy to our Azure website, the login fails.

I am using web api and OWIN to handle the authentication, and I have narrowed it down to this "simple" problem:

await AuthenticationManager.GetExternalLoginInfoAsync(); 

is returning null when deployed to azure.

  • I have checked and double-checked the return url in the google api manager.
  • I have tried setting a dummy session and clearing sessions as mentioned here: OWIN OpenID provider - GetExternalLoginInfo() returns null
  • I write Googles clientID and clientSecret out in a log, so I know they are correct

Has anyone had similar problems when deploying to azure?


Here is the code flow: First we hit the event "OnAuthenticated" on our google provider in Startup.Auth.cs when a user is logging in:

public void ConfigureAuth(IAppBuilder app)
    var provider = new CookieAuthenticationProvider();
    var originalHandler = provider.OnApplyRedirect;
    app.UseCookieAuthentication(new CookieAuthenticationOptions
        AuthenticationType = DefaultAuthenticationTypes.ApplicationCookie,
        LoginPath = new PathString("/Login"),
        Provider = new CookieAuthenticationProvider
            OnValidateIdentity = SecurityStampValidator.OnValidateIdentity<ApplicationUserManager, ApplicationUser>(
                validateInterval: TimeSpan.FromMinutes(30),
                regenerateIdentity: (manager, user) => user.GenerateUserIdentityAsync(manager)),
            OnApplyRedirect = context =>
                if (!context.Request.Uri.LocalPath.StartsWith(VirtualPathUtility.ToAbsolute("~/api")))
                    context.RedirectUri = new Uri(context.RedirectUri).PathAndQuery;

    app.UseTwoFactorSignInCookie(DefaultAuthenticationTypes.TwoFactorCookie, TimeSpan.FromMinutes(5));

    var options = new GoogleOAuth2AuthenticationOptions
        ClientId = System.Configuration.ConfigurationManager.AppSettings["googleServiceAccountWebApplicationClientId"],
        ClientSecret = System.Configuration.ConfigurationManager.AppSettings["googleServiceAccountWebApplicationClientSecret"],
        Provider = new GoogleOAuth2AuthenticationProvider
            OnAuthenticated = context =>
                return Task.FromResult(0);
        AccessType = "offline",
        SignInAsAuthenticationType = DefaultAuthenticationTypes.ExternalCookie

After this event, we hit the method "ExternalLoginCallback" and the first thing we do is to call await AuthenticationManager.GetExternalLoginInfoAsync(); which returns null

public async Task<ActionResult> ExternalLoginCallback(string returnUrl)
    var loginInfo = await AuthenticationManager.GetExternalLoginInfoAsync();
    //loginInfo is always null when published to Azure website
    if (loginInfo == null)
        return RedirectToAction("NoAccess", "Login");

Answer 1

I finally found the problem. It was an unhandled exception in the "OnAuthenticated" event. It took some time to find the problems, because this line:


Sometimes failed on azure. I changed alot of code to try and find/fix this problem, but I do believe it was an exception in OnAuthenticated.