Hi,
we are trying to setup Horde with “AuthMethod”: “OpenIdConnect” and Microsoft Active Directory Federation Services.
The https://dev.epicgames.com/documentation/en\-us/unreal\-engine/horde\-server\-for\-unreal\-engine\#authentication pages states that OidcAuthority, OidcClientId and OidcClientSecret are the needed settings. When restarting the Horde Server service the following error is reported in the log:
System.ArgumentException: Key ‘OidcAudience’ in server settings must be set when auth mode OpenIdConnect is used
Is this missing from the documentation page? If yes, how do I find what needs to be set there?
Our consultant said to put
“OidcAudience”: “https://{adfs_url}/adfs/userinfo”,
but we are not sure if this is correct. With this setting we then have the issue
“innerException”:{“message”:“Unable to map a field from user info to claim ‘http://schemas.xmlsoap.org/ws/2005/05/identity/claims/emailaddress’ using list [email]. UserInfo: {\“sub\”:\”*redacted*“}”,“trace”:" at HordeServer.Authentication.OidcAuthHandler.MapUserInfoFieldToClaim(JsonElement userInfo, ClaimsIdentity identity, String claimName, String userInfoFields) in D:\\build\\RH\\Sync\\Engine\\Source\\Programs\\Horde\\HordeServer\\Authentication\\OidcAuthHandler.cs:line 60\r\n at HordeServer.Authentication.OidcAuthHandler.AddUserInfoClaims(ServerSettings settings, JsonElement userInfo, ClaimsIdentity identity) in D:\\build\\RH\\Sync\\Engine\\Source\\Programs\\Horde\\HordeServer\\Authentication\\OidcAuthHandler.cs:line 66\r\n at HordeServer.Authentication.OpenIdConnectHandlerExtensions.MapRolesClaimAction.Run(JsonElement userData, ClaimsIdentity identity, String issuer) in D:\\build\\RH\\Sync\\Engine\\Source\\Programs\\Horde\\HordeServer\\Authentication\\OidcAuthHandler.cs:line 127\r\n at Microsoft.AspNetCore.Authentication.OpenIdConnect.OpenIdConnectHandler.GetUserInformationAsync(OpenIdConnectMessage message, JwtSecurityToken jwt, ClaimsPrincipal principal, AuthenticationProperties properties)\r\n at Microsoft.AspNetCore.Authentication.OpenIdConnect.OpenIdConnectHandler.HandleRemoteAuthenticateAsync()",“innerExceptions”:},“innerExceptions”:}}