Authorization Policy Help

andrew.wood.wb · August 28, 2019, 12:43pm

Trying to use an Authorization policy and its not working.

As soon as I use the -AuthorizationPolicy “Login” switch on the $Page1 definition the dashboard fails to load after logging in.

If I remove the -AuthorizationPolicy “Login” I login via Azure and the Dashboard loads fine.

Debug log shows this.
12:19:31 [Info] Microsoft.AspNetCore.Mvc.Infrastructure.ContentResultExecutor Executing ContentResult with HTTP Response ContentType of text/css
12:19:31 [Info] Microsoft.AspNetCore.Mvc.Internal.ControllerActionInvoker Executed action UniversalDashboard.Controllers.DashboardController.Theme (UniversalDashboard) in 1.8749ms
12:19:31 [Info] Microsoft.AspNetCore.Hosting.Internal.WebHost Request finished in 6.1859ms 200 text/css
12:19:31 [Info] Microsoft.AspNetCore.Mvc.Internal.ControllerActionInvoker Route matched with {action = “Index”, controller = “Dashboard”, area = “”, page = “”}. Executing action UniversalDashboard.Controllers.DashboardController.Index (UniversalDashboard)
12:19:31 [Info] Microsoft.AspNetCore.Authorization.DefaultAuthorizationService Authorization was successful.
12:19:31 [Info] Microsoft.AspNetCore.Mvc.Internal.ControllerActionInvoker Executing action method UniversalDashboard.Controllers.DashboardController.Index (UniversalDashboard) - Validation state: Valid
12:19:31 [Debug] DashboardController Index
12:19:31 [Debug] AuthorizationService Authorization policies present.
12:19:31 [Debug] AuthorizationService Checking page Page One.
12:19:31 [Debug] AuthorizationService Page authorized.
12:19:31 [Debug] AuthorizationService Checking page Page Two.
12:19:31 [Debug] AuthorizationService Checking policy Login.
12:19:36 [Debug] Quartz.Core.QuartzSchedulerThread Batch acquisition of 0 triggers

then just repeats the last line.

Heres my code. (sensitive bits removed)

Import-Module UniversalDashboard


$Page1 = New-UDPage -Name "Page One" -Icon mail_bulk -Content { 
  New-UDCard -Title "Some Data" -Content {
  } 
}

$Page2 = New-UDPage -Name "Page Two" -Icon home  -AuthorizationPolicy "Login" -Content { 
  New-UDCard -Title "Same Data" -Endpoint {
  } 
}

$Certificate = (Get-ChildItem -Path Cert:\LocalMachine\My\<REDACTED>)

$AzureADParams = @{
  ClientID = '<REDACTED>'
  Instance = '<REDACTED>'
  Domain   = '<REDACTED>'
  TenantID = '<REDACTED>'
}

$AuthenticationMethod = New-UDAuthenticationMethod @AzureADParams

$AuthPolicy = New-UDAuthorizationPolicy -Name "Login" -Endpoint {
  $true
}

$LoginPage = New-UDLoginPage -AuthenticationMethod $AuthenticationMethod -AuthorizationPolicy $AuthPolicy

$ServiceOps = New-UDDashboard -Title "ServiceOps" -Pages @($Page1, $Page2) -LoginPage $LoginPage 

Enable-UDLogging -Level Debug -Console
Start-UDDashboard -Port 443 -Dashboard $ServiceOps -Name "ServiceOps" -Certificate $Certificate -AutoReload

adam · August 28, 2019, 1:38pm

Seems like this should work and should definitely not be a white page. I’ll validate when I have some time today.

Can you do me a favor and switch the order of your pages when you add them to the New-UDDashboard -Pages parameter?

@($Page2, $Page1)

I know it sounds weird but I have a hunch.

Could you also check your browser’s developer tools for errors? You can press F12 in your browser to pop that open.

andrew.wood.wb · August 28, 2019, 3:58pm

Switching the order made no difference and nothing in the developer tools is indicating an error. It just shows the page load waiting on a fetch of dashboard.

andrew.wood.wb · August 30, 2019, 9:28am

Any more I can do to debug this?

adam · August 30, 2019, 1:37pm

Can you validate which version of UD you are running? I just tried this on our nightly build and it’s working. That’d said my log messages are a bit different so I wonder which version you are running.

07:36:35 [Debug] DashboardController Index
07:36:35 [Debug] AuthorizationService Authorization policies present.
07:36:35 [Debug] AuthorizationService Checking page Page One.
07:36:35 [Debug] AuthorizationService Checking policy Login.
07:36:35 [Debug] AuthorizationService Policy successful. Breaking.
07:36:35 [Debug] AuthorizationService Page authorized.
07:36:35 [Debug] AuthorizationService Checking page Page Two.
07:36:35 [Debug] AuthorizationService Checking policy Login.
07:36:35 [Debug] AuthorizationService Policy successful. Breaking.
07:36:35 [Debug] AuthorizationService Page authorized.

andrew.wood.wb · August 30, 2019, 2:01pm

ok I was on 2.4.1 Once I installed and installed 2.5.3 it started working. I guess ill have to throw an update script into my development environment.

Thanks.

adam · August 30, 2019, 2:02pm

Ok. That’s good news. Thanks, Andrew.

Topic		Replies	Views
Unable to get any authorization policies to work - Azure AD Auth/IIS Universal Dashboard Help	12	978	July 13, 2020
More trouble with Authorization Policies Universal Dashboard Help	14	1524	April 15, 2020
New-UDAuthorizationPolicy change? Universal Dashboard Help	6	468	October 29, 2019
Manipulating Authorization Policies Universal Dashboard Help	2	587	December 13, 2019
Completly noob question, Authorization for the dashboard actions Universal Dashboard Help	2	453	August 1, 2019

Authorization Policy Help

Related Topics