I am working on a Blazor Server app with authentication. There are a couple of things that make the implementation interesting. First, the app is being hosted on an AWS Linux instance. Second, the spec requires both Google and Facebook authentication.
The first problem is remarkably easy to solve. It requires setting up a reverse proxy in Apache, but that's the worst of it. The second is another matter - Google authentication cooperates with the reverse proxy as is, but Facebook authentication does not seem to.
Both authentications requires a SSL cert. The difference seems to be this: in the reverse proxy, the transition to Kestrel switches from https: to http:. Google seems not to care about that, and as long as the Redirect-URL is http:, all is well. Facebook, on the other hand, does care, and insists that the Redirect-URL be https:, implying that the whole route is encrypted.
Hence, my Google authentication is working and my Facebook authentication is failing.
What I'm looking for is advice from someone(s) who has dealt with Facebook authentication, especially in this configuration, to indicate what needs to be done to make this happen. Code can be provided, but atm it's just the standard reverse proxy configuration in Apache.
Suggestions?