-
Notifications
You must be signed in to change notification settings - Fork 985
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
[docs] How to handle consent and challenge for internal-only applications? #13
Comments
We reverted the change to a OpenID middleware and now using Jwt against As user I get:
To be honest I have right now no idea how to do that ( and no idea how to call user schema extensions ). Our target is to have absolutely no consent questions for any user. I know I have to configure something on the MSAL portal in the pre-auth'ed applications section. |
Okay, another step further. You cannot set contents to a WebAPI platform only. So even you have a Web API you have to add a Web App box to your Azure AD 2.0 App configuration. |
Thanks for your feedback @BenjaminAbt The case of the Web API is handled in another sample: https://github.com/azure-samples/active-directory-dotnet-native-aspnetcore-v2 |
See also #24 which I just medged. |
This issue is for a: (mark with an
x
)Minimal steps to reproduce
Any log messages given by the failure
Expected/desired behavior
OS and Version?
Any
Versions
Mention any other details that might be useful
For me it is absolutely unclear how to implement APIs right now. Right know I would say the documentation is a big pain for me.
Our scenario is an internal single page application. This SPA communicates with different internal ASP.NET Core APIs.
So we only have internal users and we only have internal applications. We dont need any challenge to ask the user for consent.
We already spent over two weeks in the documentation and in samples. We found a lot of obsolete stuff in the docs, referenced to archived GitHub repos and samples with obsolete NuGet Packages.
At the end my question is still: what is the correct configuration of an internal API-based system, without consent? :-)
We dont want so show 17 consents because we have 17 applications to internal users.
I also tried to migrate this sample into a API.
But I always run into the event
OnRedirectToIdentityProvider
, but I dont know why.The text was updated successfully, but these errors were encountered: