Web API - OWIN TokenEndPointPath not found 404 on IIS

Question

I just tested a working Web.Api named "WebApiServizio1" protected with a OAuth2 BearerAuthentication (Owin implementation) and it's been deployed on the root of my IIS WebServer.

I would like to change the current webserver configuration moving the "WebApiServizio1" web.Api inside a new website WEBAPI. So I can host more then one api (with the same host and port).

IIS: WEBAPI webSite Port:80 (AppPool: Integrated, 4.0)

PROBLEM But when I try to autenticate with the OWIN Middleware I can't obtain the Token, I get a "404 - not found" response trying to reach the TokenEndpointPath.

Recap:

http://localhost/WebApiServizio1/ HTTP 403.14 - Forbidden CORRECT! http://localhost/WebApiServizio1/oauth/token/ HTTP 404.0 - Not Found - :(

This the current Owin.Startup configuration:

Client configuration:

Any ideas?

I also having the same issue. Please post your solution.. if it is fixed. — Krishna Mani
I'm sorry no solution at the moment, our project has been stopped. — Tom
Thank you for your update, currently sub-domain(child application) won't support Token End PointPath in IIS, The only way is to create a new application and host the targeted WEB API solution. — Krishna Mani

jps jps · Accepted Answer · 2017-05-31T14:56:41

the problem seems to be the trailing / after token in your PostAsync() call

instead write

using (HttpResponseMessage response = await client.PostAsync("/oauth/token", new FormUrlEncodedContent(values)))

and it should work.

On a side note: when you initialize your RefreshTokenProvider with DateTime.UtcNow.AddHours(8), all your refresh tokens are valid until 8 hours after the programm was startet instead of 8 hours after the access token is issued.

Web API - OWIN TokenEndPointPath not found 404 on IIS

3 Answers