I am able to add the openid url to the default login with overriding the default login but I am getting a cross error enter image description here
I am able to add the openid url to the default login with overriding the default login but I am getting a cross error enter image description here
Related
We are facing issue on resetting passwords in azure, when ever user tries to reset password from "https://myaccount.microsoft.com" by clicking password reset its redirecting to page "https://account.activedirectory.windowsazure.com/ChangePassword.aspx", since we have not enabled SSPR and password writeback it will throw an error, instead of error page is there any way to set customized page or URL indicating to reset password using that link?
We have created an App with Buildfire and set that up for using OAuth 2.0 for user authentication.Below is the setup we have done :
App is able to get token using URL https://xxxx.us?oauth=token but when it goes to https://xxxx.us/oauth/me for getting user profile it is returning error as Could not retrieve profile info.
I have tried figuring out the issue at our end but everything is working fine for us because when I repeated same thing with Postman, I am able to get User profile, below is the reference for that :
I don't know what's wrong with App, Please help me in resolving this issue.
Edit :
Strangely when I am checking console on buildfire site, I am seeing below :
which means app is able to retrieve user profile but it stills giving the same error and not allowing user to login into the app.
Finally I have been able to figure out a solution for my problem. If you are using OAuth server from wp-oauth.com and user profile can't be retrieved from https://xxxx.us/oauth/me then you can try below URL for retrieving user profiles in Buildfire app.
https://xxxx.us/wp-json/wp/v2/users/me
I need to add an option for a user which is "forget password"
here the user can change their password (no login)
there is any way to do this using azure graph API using HTTP request
if any then what configuration I required and validate user?
currently, we do not have this feature
as per reference from enter link description here
enter link description here
My website has AAD authentication enabled and it works fine when we try to access the home page.
But if I am accessing html pages directly, it is not prompting for authentication. Am I missing any setting to enable authentication for all the pages?
Usually you have to set up your pages to request the user to be authenticated before it loads.
Here is me solving this problem with Python Flask:
Refresh Tokens for Azure AD V2 Applications in Flask
Now, in order to invoke this code at the right time, I need to create
a view decorator, and Flask has a sample for almost exactly what we
want to do here: a login required decorator.
Basically, we add this decorator to any view where we expect the user
to be signed in. If the user has no token, we will redirect them to
the login page. If they have an expired token and a refresh token, we
will use the refresh token to get a new access token. Otherwise, if
the token is present and valid, we simply let the view load.
This same concept is available out of the box using .Net: active-directory-dotnet-graphapi-web
You can find in the README of this sample the following:
If you want the user to be required to sign-in before they can see any
page of the app, then in the HomeController, decorate the
HomeController class with the [Authorize] attribute. If you leave this
out, the user will be able to see the home page of the app without
having to sign-in first, and can click the sign-in link on that page
to get signed in.
Scenario:
I built a Facebook tab application that requires authorization.
The application is installed on a Facebook page.
When an unauthorized user accesses the application I redirect to the OAuth dialog:
http://www.facebook.com/dialog/oauth?client_id=appid&redirect_uri=http://www.facebook.com/pages/page name/pageid?sk=app_appid&scope=user_birthday,user_location&display=page
Note the "redirect_uri" is the Application on the installed Facebook page.
So, if the user allows we redirect to the tab application - This works fine!
But, if the user denies access (clicks Cancel button - using new OAuth dialog).
The user is again redirected to the tab application and again redirected to the OAuth dialog.
I have noted from the documentation that when the user denies access the browser will redirect to the "redirect_uri" with the following parameters: error=access_denied&
error_description=The+user+denied+your+request.
But if Facebook is using an additional redirect to my application from the "redirectt_uri": http://www.facebook.com/pages/page name/pageid?sk=app_appid
...the error response seems to be lost.
Note: I can successfully capture the error parameters when setting the "redirect_uri" to the canvas url, but I need to have the redirect_uri formatted to open the application in the context of the installed Page if the user allows access.
How would I capture the error parameters in this scenario?
I solved this by adding a flag to the app_data parameter for the redirect_uri. When the user accesses the application initially, this flag is set. I check for OAuth token, if one does not exist I redirect to the OAuth dialog with a redirect_uri to the application installed on the Fan Page. The redirect_uri now includes the flag in the app_data parameter. So, after "Canceling" the application, Facebook redirects to the installed application on the Fan Page - I then check for the flag and redirect to an error page.