RE: Issue while integrating login to a front-end

@mgetka, as you previously said, the issue was mainly that I was not sending any state as a parameter.
Once that was done, I had another issue regarding unprotecting state, but it was eventually worked out. Thank you very much for the documentation which you sent me, it has been very useful!.

@mgetka, as you previously said, the issue was mainly that I was not sending any state as a parameter.
Once that was done, I had another issue regarding unprotecting state, but it was eventually worked out. Thank you very much for the documentation which you sent me, it has been very useful!.

Hey everyone. First of all, sorry if this not the expected place for this post to be made, and feel free to remove it if I'm breaking any rules.

I have recently started working with FusionAuth, and implemented a backend that supports OIDC to authenticate using FusionAuth. The Startup service configuration is as follows:

public void ConfigureServices(IServiceCollection services)
        {
            JwtSecurityTokenHandler.DefaultMapInboundClaims = false;

            // Configure your policies
            services.AddAuthorization(options =>
                options.AddPolicy("Registered",
                policy => policy.RequireClaim("applicationId", Configuration["Asd:ClientId"])));

            services.AddAuthentication(options =>
            {
                options.DefaultScheme = "cookie";
                options.DefaultChallengeScheme = "oidc";
            })
                .AddCookie("cookie", options =>
                {
                    options.Cookie.Name = Configuration["Asd:CookieName"];
                })
                .AddOpenIdConnect("oidc", options =>
                {
                    options.Authority = Configuration["Asd:Authority"];

                    options.ClientId = Configuration["Asd:ClientId"];
                    options.ClientSecret = Configuration["Asd:ClientSecret"];

                    options.ResponseType = "code";
                    options.RequireHttpsMetadata = true;
                });

            services.AddControllers();  
        }

And this is my appsettings:

"Asd": {
    "Authority": "https://fusionauth.mydomain.com",
    "ClientId": "clientid guid",
    "ClientSecret": "clientsecret...",
    "CookieName": "cookie name"
  }

I have been able to successfully send requests to some endpoints making sure that I'm authenticated, and if I'm not, then I'm forced to log in, which seems to be fine for now.

On the other side, I'm building a front-end application which will authenticate using FusionAuth forms. To do so, I added an IFRAME which goes to the following url:

https://fusionauth.mydomain.com/oauth2/authorize?client_id=d67d9f81-22fe-4a01-a560-0f43d9a7002d&response_type=code&redirect_uri=https%3A%2F%2Fapi.mydomain.com%2Fsignin-oidc

I can see the login UI as expected, and I'm able to login, however, this problem arises:

I have done some research, and tried adding stuff like CallbackPath to the configuration, but the error kept being the same (thus I eventually rolled it back to the state I shown the code before).

This might probably be an issue related to my little knowledge related to both OAuth2, authentication in general and FusionAuth, so any feedback is appreciated to guide me through the solution of this problem.

Thank you very much!