MSIS7012 : The same client browser session has made '6' requests in the last '1' seconds. Contact your administrator for details

rody 0 Reputation points
2024-09-16T02:49:42.47+00:00

We have a .Net application which we implemented ADFS WSFED in it. Its working fine in local but when we deployed we are facing this error.

For Dev in URL I see Realm is HTTPS but wreply is HTTP.
But for local I see Realm is HTTPS but wreply is HTTPS. and Auth is working perfectly.

Tried so many methods, but still getting error: The same client browser session has made '6' requests in the last '1' seconds. Contact your administrator for details. ADFS WSFED.

Please give some suggestions.

Protocol Name: 
wsfed
 
Relying Party: 
URL
 
Exception details: 
Microsoft.IdentityServer.Web.InvalidRequestException: MSIS7042: The same client browser session has made '6' requests in the last '0' seconds. Contact your administrator for details.
   at Microsoft.IdentityServer.Web.Protocols.PassiveProtocolHandler.UpdateLoopDetectionCookie(WrappedHttpListenerContext context)
   at Microsoft.IdentityServer.Web.Protocols.PassiveProtocolHandler.ProcessCommonCookiesInLastAuthenticationStage(ProtocolContext context)
   at Microsoft.IdentityServer.Web.Protocols.WSFederation.WSFederationProtocolHandler.SendSignInResponse(WSFederationContext context, MSISSignInResponse response)
   at Microsoft.IdentityServer.Web.Protocols.WSFederation.WSFederationProtocolHandler.Process(ProtocolContext context)
   at Microsoft.IdentityServer.Web.PassiveProtocolListener.ProcessProtocolRequest(ProtocolContext protocolContext, PassiveProtocolHandler protocolHandler)
   at Microsoft.IdentityServer.Web.PassiveProtocolListener.OnGetContext(WrappedHttpListenerContext context)

ASP.NET Core
ASP.NET Core
A set of technologies in the .NET Framework for building web applications and XML web services.
4,621 questions
Active Directory Federation Services
Active Directory Federation Services
An Active Directory technology that provides single-sign-on functionality by securely sharing digital identity and entitlement rights across security and enterprise boundaries.
1,264 questions
Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
22,172 questions
{count} votes

2 answers

Sort by: Most helpful
  1. James Hamil 25,636 Reputation points Microsoft Employee
    2024-09-18T19:16:54.1866667+00:00

    Hi @rody , this can happen when the same client browser session makes multiple requests in a very short period of time.

    Check that the Realm and wreply URLs are consistent across your environments. In your case, it seems like the wreply URL is HTTP in the development environment and HTTPS in the local environment. Make sure both URLs use HTTPS to avoid any inconsistencies.

    The error shows that the loop detection cookie is being triggered. This can happen if the client is making multiple requests in a short period. You can try increasing the loop detection threshold in the ADFS configuration. This can be done by modifying the LoopDetectionThreshold parameter in the ADFS configuration file.

    Make sure that your ADFS server is up to date with the latest patches and updates.

    Please let me know if this works!

    Best,

    James


  2. Bruce (SqlWork.com) 66,866 Reputation points
    2024-09-18T20:26:04.3266667+00:00

    this error is from redirect errors. the login server has detected a login loop. that is after login, it redirects to the application site with the token and the application site redirects back to the login site.

    try an oauth debugging tool for the browser to see what is happening.

    0 comments No comments

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.