This repository has been archived by the owner on Sep 18, 2021. It is now read-only.
OpenID Connect - Force user to sign in every time #325
Labels
Comments
|
In the OIDC spec there is a http://openid.net/specs/openid-connect-core-1_0.html#AuthRequest |
|
Thanks, setting prompt=login in the implicit flow request seems to give the desired behaviour |
|
Is this still the case with idsvr4? |
|
The OIDC prompt parameter is supported in IdSvr4, yes. |
|
Is there a way to force login prompt and not let the client decide about that through the "prompt" param? Thanks |
Sign up for free
to subscribe to this conversation on GitHub.
Already have an account?
Sign in.
Hi,
What identity server options do I need to set to force the user to sign in on every session? I'm hosting an Angular app using the OpenID Connect implicit client flow.
I've set CookieOptions to new CookieOptions { IsPersistent = false }, however I'm testing on IIS Express, and so the identity server and Angular app are both on localhost, with different ports, so I think this isn't helping either (as the idsrv cookie is shared between both applications).
I haven't tried to sign out of the IdP through the end_session_endpoint URI exposed at the discovery endpoint (connect/endsession), is this handled? However, presumably I should never need to do this if the idsrv cookie is not written in the first place (is this correct?).
Thanks
The text was updated successfully, but these errors were encountered: