question

MortensterlundJrgensen-2743 avatar image
0 Votes"
MortensterlundJrgensen-2743 asked JitendraRai-2073 answered

Internal exception during login or 10 year old cookies returned

Since last week around February 24 we have been unable to login using our B2C tenant (Europe). Until a few days ago it was working sometimes, but since yesterday we had no success at all.
We mostly receive "Sorry, but we're having trouble signing you in" with "An exception has occurred". Application Insights only show Activity Type="Issue an id_token to the application" and Status Reason="There is a problem with the service.".
If we actually do succeed logging in and redirecting to our app, the 3 returned cookies x-ms-cpim-* contains mostly no value AND always an expiration date exactly 10 years ago.
We tried multiple user accounts/client PCs/browsers, increasing token/cookie lifetimes and reverting to last known working custom policy XMLs and app code.

Update:
We have another B2C tenant that is working too and it seems to return 10 year old cookies as well, so probably not the issue.
But when our faulty B2C tenant sometimes successfully signs in, apparently our app is unable to use whatever is returned from B2C. Identity Server 4 GetAuthorizationContextAsync() returns null

azure-ad-b2c
· 6
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

Thanks @MortensterlundJrgensen-2743 and could you please share the timestamp and correlation id to investigate more.

0 Votes 0 ·

We use the following policy with a self-signed certificate: https://github.com/azure-ad-b2c/samples/tree/master/policies/invite
We haven't seen this issue since March 5th when we switched to a non-self-signed certificate, so we only have these old correlation ids:

c0c74b20-3a57-4ddc-ad45-fa47946e451a
2021-03-02 15:28:14Z

31be705d-5587-4171-919d-3ff337164536
2021-03-01 10:21:01Z

0 Votes 0 ·
JitendraRai-2073 avatar image JitendraRai-2073 MortensterlundJrgensen-2743 ·

Thanks @MortensterlundJrgensen-2743 and verified both correlation ids and the status code are success.

0 Votes 0 ·
Show more comments

1 Answer

JitendraRai-2073 avatar image
1 Vote"
JitendraRai-2073 answered

Thanks @MortensterlundJrgensen-2743 and I would recommend to create a support ticket to investigate more on the this issue. As you mentioned it is happening sporadically.

5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.