-
Notifications
You must be signed in to change notification settings - Fork 0
Getting Started
All signin methods require at least these two steps:
- Make the browser load a URL on the authentication server
- Handle the redirect when the authentication server navigates the browser back to your redirect handler
The redirect will have a query string that this library can decode into user information
There are 3 variations of this process:
- signinRedirect, where the library navigates the browser away from your page to the login form on the authentication server
- signinSilent, where the library generates a hidden iframe into which the browser loads a URL on the authentication server
-
signingPopup, where the library opens a popup window with a URL on the authentication server
It may not be possible to distinguish which variation is being used from the query string generated by your authentication server, so you should expect to need a separate redirect handler URL for each variation that you use.
Your callback URLs must be specified in the authentication server configuration, or the authentication server will not redirect to them.
Some authentication servers take your callback URL and append a query string that starts with "&" without including a "?" anywhere, which generates non-compliant URLs. If your callback URLs already have a query in them, appending a query that starts with "&" results in a compliant URL.
signinRedirectCallback etc can accept the entire URI in window.location.href; it isn't necessary to extract the query string first, and they will find the information in a non-compliant URL which is missing the "?"
automaticSilentRenew amounts to a periodic signinSilent. If a callback has been given to events.addUserLoaded, it is invoked when renewal succeeds.