Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[FEATURE REQ] Add support for setting the OAuth 2.0 prompt= value #38099

Open
peombwa opened this issue Aug 8, 2023 · 1 comment
Open

[FEATURE REQ] Add support for setting the OAuth 2.0 prompt= value #38099

peombwa opened this issue Aug 8, 2023 · 1 comment
Assignees
@christothes
Labels
Azure.Identity Client This issue points to a problem in the data-plane of the library. customer-reported Issues that are reported by GitHub users external to the Azure organization. needs-team-attention Workflow: This issue needs attention from Azure service team or SDK team question The issue doesn't require a change to the product in order to be resolved. Most issues start as that
Milestone
Backlog

Comments

@peombwa
Copy link

peombwa commented Aug 8, 2023
edited
Loading

Library name

Azure.Identity

Please describe the feature.

Add support for setting the OAuth 2.0 prompt query parameter value when requesting an authorization code - https://learn.microsoft.com/en-us/azure/active-directory/develop/v2-oauth2-auth-code-flow#request-an-authorization-code.

Microsoft Graph PowerShell relies on Azure.Identity to use MSAL. We currently have a requirement to support auth with AD FS, which requires having prompt=login to bypass single sign-on as explained at https://learn.microsoft.com/en-us/windows-server/identity/ad-fs/operations/ad-fs-prompt-login.

It does appear that there isn't an option available to specify the prompt value as the token credential classes default to prompt=select_account or prompt=none based on the login hint:

azure-sdk-for-net/sdk/identity/Azure.Identity/src/Credentials/InteractiveBrowserCredential.cs

Lines 235 to 241 in 36f54e7

private async Task<AccessToken> GetTokenViaBrowserLoginAsync(TokenRequestContext context, bool async, CancellationToken cancellationToken)
{
Prompt prompt = LoginHint switch
{
null => Prompt.SelectAccount,
_ => Prompt.NoPrompt
};

@github-actions github-actions bot added Azure.Identity Client This issue points to a problem in the data-plane of the library. customer-reported Issues that are reported by GitHub users external to the Azure organization. needs-team-triage Workflow: This issue needs the team to triage. question The issue doesn't require a change to the product in order to be resolved. Most issues start as that labels Aug 8, 2023
@peombwa peombwa mentioned this issue Aug 8, 2023
Open
@jsquire jsquire added needs-team-attention Workflow: This issue needs attention from Azure service team or SDK team and removed needs-team-triage Workflow: This issue needs the team to triage. labels Aug 9, 2023
@jsquire
Copy link
Member

jsquire commented Aug 9, 2023

Thank you for your feedback. Tagging and routing to the team member best able to assist.

@christothes christothes added this to the Backlog milestone Dec 1, 2023
@joshfree joshfree moved this from Untriaged to Not Started in Azure Identity SDK Improvements Oct 16, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@christothes christothes

Labels
Azure.Identity Client This issue points to a problem in the data-plane of the library. customer-reported Issues that are reported by GitHub users external to the Azure organization. needs-team-attention Workflow: This issue needs attention from Azure service team or SDK team question The issue doesn't require a change to the product in order to be resolved. Most issues start as that
Projects
Azure Identity SDK Improvements
Status: Not Started
Milestone
Backlog
Development

No branches or pull requests
3 participants
@jsquire @christothes @peombwa