I'm building a ASP.NET Core Web App (Razor Pages) application and I am trying to add external authentican providers. I have succesfully added the Microsoft provider, and am working on the Facebook provider, following these suggested steps.
My code:
builder.Services.AddAuthentication()
.AddMicrosoftAccount(options =>
{
options.ClientId = ...;
options.ClientSecret = ...;
})
.AddFacebook(options =>
{
options.AppId = ...;
options.AppSecret = ...;
});
When running on my local dev client, everything seems to work fine: My test user can add Facebook as an external login, and use it to log in to the application.
However, it fails when the same application is running on Azure. Upon completing the Facebook side of the authentication process, it redirects to the (correct) return page, which fails with a 500 error.
https://abcxyz.azurewebsites.net/signin-facebook?code=AQBe...74Glf8#_=_
Sadly, I'm not getting very tasty info from the Azure Application Logs, just what appears to be an IIS-generated error page:
HTTP Error 500.0 - Internal Server Error The page cannot be displayed because an internal server error has occurred. ... The Requested URL https://AbcXyz:80/signin-facebook?code=AQBe...74Glf8 ... Information:This error means that there was a problem while processing the request. The request was received by the Web server, but during processing a fatal error urred, causing the 500 error.
I'm at a loss as to identifying what is the cause of the failure, so I'm left at guessing that my client is able to performs some sort of undisclosed back-channel operation towards Facebook that my Azure App Service instance is blocked from.
Is there some details I've missed in my application's Facebook configuration? Anything I need to enable in Azure?
codeparameter was received, the application has to make an API call, to exchange that code for an access token - and my guess would be, that things go wrong in that step, due to the API response. But you'll really have to see that you get some more detailed information about the error.