Communication Issue Between API and WebAssembly on Azure Due to Extra Cookies
I am trying to implement an API and a WebAssembly in .NET Core on Azure. However, after deployment, I noticed that the communication between both stopped working.
Upon investigation, I found that there are two additional cookies beyond the expected ones: ARRAffinity and .AspNetCore.Identity.Application. My application, however, should only be using the .AspNetCore.Identity.Application cookie. I am unsure where the other cookies are being generated from, but I believe they may originate from Azure itself.
I would like to know how I can resolve this issue and ensure that only the .AspNetCore.Identity.Application cookie is used, removing any interference from the other cookies.
Locally, on my machine, the API and the WebAssembly work correctly, with only the .AspNetCore.Identity.Application cookie.
I am using BLAZOR.
program.cs in WebAssembly:
var builder = WebAssemblyHostBuilder.CreateDefault(args);
builder.RootComponents.Add<App>("#app");
builder.RootComponents.Add<HeadOutlet>("head::after");
builder.Services.AddRadzenComponents();
builder.Services.AddScoped<CookieHandler>();
builder.Services.AddAuthorizationCore();
builder.Services.AddScoped<AuthenticationStateProvider, AuthAPI>();
builder.Services.AddScoped<AuthAPI>(sp => (AuthAPI)sp.GetRequiredService<AuthenticationStateProvider>());
builder.Services.AddCascadingAuthenticationState();
builder.Services.AddScoped<Status>();
builder.Services.AddHttpClient("API", client => {
client.BaseAddress = new Uri(builder.Configuration["API:Url"]!);
// client.BaseAddress = new Uri("https://localhost:7089/");
client.DefaultRequestHeaders.Add("Accept", "application/json");
}).AddHttpMessageHandler<CookieHandler>();
await builder.Build().RunAsync();
On the API side, everything seems to be normal. When I use PostMan or Swagger, everything works fine. The problem arises when I use Blazor. In the API Server:
var builder = WebApplication.CreateBuilder(args);
builder.Services.AddControllers();
builder.Services.AddDbContext<HContext>((options) =>
{
options
.UseSqlServer(builder.Configuration["ConnectionStrings:HDB"])
.UseLazyLoadingProxies();
});
void UseLazyLoadingProxies()
{
throw new NotImplementedException();
}
builder.Services
.AddIdentityApiEndpoints<IdentityUser>()
.AddEntityFrameworkStores<Context>();
builder.Services.AddAuthentication();
builder.Services.AddEndpointsApiExplorer();
builder.Services.AddSwaggerGen();
builder.Services.Configure<Microsoft.AspNetCore.Http.Json.JsonOptions>(options => options.SerializerOptions.ReferenceHandler = ReferenceHandler.IgnoreCycles);
builder.Services.AddCors(
options => options.AddPolicy(
"wasm",
policy => policy
.AllowAnyMethod()
.SetIsOriginAllowed(pol => true)
.AllowAnyHeader()
.AllowCredentials()));
builder.Services.ConfigureApplicationCookie(options => {
options.Cookie.HttpOnly = true; options.Cookie.SecurePolicy = CookieSecurePolicy.Always; options.Cookie.SameSite = SameSiteMode.None; options.Cookie.Name = ".AspNetCore.Identity.Application"; options.LoginPath = "/login"; options.LogoutPath = "/Identity/Logout"; options.AccessDeniedPath = "/"; });
var app = builder.Build();
app.UseHttpsRedirection();
app.UseCors("wasm");
app.UseStaticFiles();
app.UseCookiePolicy();
app.UseAuthorization();
app.MapCustomIdentityApi<IdentityUser>();
app.MapControllers();
app.UseSwagger();
app.UseSwaggerUI();
app.UseMiddleware<ReadMe.Metrics>();
app.Run();
I’m sharing more code here to help with troubleshooting. It works fine with localhost. This could be something in Azure that is not properly receiving requests from a different URL for my API. This is why I need help.
how I can resolve this issue and ensure that only the .AspNetCore.Identity.Application cookie is used, removing any interference from the other cookies.
To remove ARRAffinity cookies, turn off Session Affinity in the General Settings section under Configuration in Azure Web App as shown below.
I noticed that the communication between both stopped working.
Add the Azure App service backend API URL to the frontend Program.cs like this:
builder.Services.AddHttpClient<AuthAPI>(client =>
{
client.BaseAddress = new Uri("https://<BackendAzureWebAppName>.canadacentral-01.azurewebsites.net");
});
Enable Cors in the Backend app and allow Azure Frontend URL.
builder.Services.AddCors(options =>
{
options.AddPolicy("AllowWasm",
policy => policy.WithOrigins("https://<FrontendAzureWebAppName>.canadacentral-01.azurewebsites.net") // Update with actual WASM URL
.AllowAnyMethod()
.AllowAnyHeader()
.AllowCredentials());
});
app.UseCors("AllowWasm");
This will make it proper communication between two apps.
Azure Output:
- "Schema" property not found in Postgres Connector
- Downloading file from Azure blob storage via Memory Stream
- Reading env variable from template.yaml
- HTTP Error 500.30 - ASP.NET Core app failed to start - Azure
- Azure DevOps Pipelines: TerraformTaskV4: init with different subscription and Workflow Identity Federation
- Enabling HTTPS for a Azure blob static website
- How to search across many Azure Devops Git project and find all files which contain specific text AND which filename contains "Resource"
- Hosting SPA with Static Website option on Azure Blob Storage (clean URLs and Deep links)
- Using Managed Identity to Access Azure OpenAI Service
- Azure data factory not loading
- Transfer encrypted dataprotection keys from a windows vm to azure keyvault
- Refresh powerBI data with additional column
- Azure Application Insights AKS - How to Create 1 custom alert rule which will trigger multiple alerts, but with different names (per pod name)?
- gRPC and REST side by side in Azure App Service, Linux Container
- Connecting to a SignalR WSS stream but not getting the response i am looking for
- SignalR prevent user from opening multiple sessions in different tabs
- Application Insights -_logger.LogInformation
- CosmosDB is not allowing serverless capabalities to NoSQL, it says I must use CapacityMode
- Azure Webapp / Website Swap : HTTP Ping Error
- Microsoft Graph API - Update phoneMethods is no longer working
- Use Azure Key Vault secret in Header section of Web Activity
- Azure Storage blob getting the io.netty.channel.StacklessClosedChannelException while generating /downloading the from SasUrl
- How do I save and later load Azure AnalyzeResult object in python?
- Office 365 Exchange Online permission is not visible for registered application in azure active directory
- Azure ADF - HTTP : Table from list
- Self hosted azure devops build agent not getting tool from $PATH
- Azure devops pipeline stages template nesting
- Azure APIM is returning the incorrect HTTP response error when call is missing mandatory querystring parameter
- Azure DevOps build pipeline logid for a specific task - dynamically
- PS script to fetch the list non-compliance resource list with respect to policy from multiple subscriptions