Is here someone that knows how to implement the "Azure AD" Passport Strategy into Nest.js?
I couldn't find any documentation abut this particular strategy.
Thank you.
Related
I have created a web application using Django and embedded the azure chatbot after publishing it. Once the user logs into the Web App, i would like to transmit login info to the chatbot embedded on the app in order to give customized interactions e.g. "Hello Richard, How may i help you?" etc.. I believe Azure AD SSO is a good option. But couldn't find good resources on how to implement it for my use case.
Is AAD SSO the best option?,
If yes, can anyone please guide me to resources that i can refer to implement it.
If no, please provide some info on what's the most optimal approach for this use case.
Here's the samples for Bot Authentication and Bot Authentication with Azure and MSGraph, as well as the documentation on user auth in bots.
If your users can be authenticated using Azure AD SSO, then yes, it's a good solution.
So I recently started exploring Azure Identity Platform for this user authorization use case I'm trying to implement. After a bit of research I came across using Graph API and creating ROPC flows to handle SingUp and Login via REST API from my application. My requirement is also to allow users to use login credentials from another app (I'm not sure yet if it implements a SAML based Identity Provider method) to use services in my application. This is a typical SSO requirement, but I'm not sure if it is possible to implement alongside username-password based authentication using Azure AD B2C.
I would appreciate any leads. Thank you.
Edit: To be more precise, I am working with Java-Spring. The demo application mentioned in Azure AD documentation (Woodgrove groceries) is exactly what I'm trying to achieve. A quick google search for the same provides me with github repos with sample code that uses .Net I believe. Are there any Java sample codes that demonstrate the same?
ROPC does not support SSO if that's what you want to achieve.
I've been asked to integrate a new web app with our B2C implementation and the requirement is to support the Grant Flow with PKCE.
Does B2C/IEF support this? Any pointers as to steps required?
I'm hopeful as I've found this reference in the AD docs, which references code_challenge and code_challenge_method parameters in the request to the /authorize endpoint.
Thanks
Mark
According to this developer announcement and this documentation issue, it is supported, although it isn't enabled for the implicit flow AFAIK.
it sounds like you are trying to create a web based application that can only use Auth code with PKCE per the new OAuth guidelines. Please refer to the following post in regards to the new OAuth rules and Microsoft's Auth process : https://developer.microsoft.com/en-us/identity/blogs/our-thoughts-on-implicit-grant-with-microsoft-identity/
Microsoft's suggestion is to utilize the Microsoft Libraries to do authentication, that is using either ADAL/MSAL.
As it's a B2C Application you will want to use MSAL. For more information on using MSAL please refer to : https://learn.microsoft.com/en-us/azure/active-directory/develop/msal-b2c-overview
I'd like to connect my xWiki installation to Azure AD for user authentication. Does anybody have an idea how to achieve this?
Thanks
You might want to look at the dedicated extension pages describing how to use LDAP in XWiki: http://extensions.xwiki.org/xwiki/bin/view/Extension/LDAP/ (both Authenticator and the Application to customize it)
Additionally, you might be interested in this paying app that is supposed to be specialized in Active Directory and should help you use it without too much work: https://store.xwiki.com/xwiki/bin/view/Extension/ActiveDirectoryApplication
Now, since Azure AD does not allow LDAP connection (according to your comment), you might want to look into using OpenID Connect. It seems to be supported by Azure AD (https://learn.microsoft.com/en-us/azure/active-directory/develop/active-directory-protocols-openid-connect-code) and XWiki also has a recently published extension to be able to authenticate with OpenID Connect (http://extensions.xwiki.org/xwiki/bin/view/Extension/OpenID+Connect/). There`s also an introductory blog article on the feature: https://www.xwiki.org/xwiki/bin/view/Blog/Your%20new%20Identity%20Provider%20XWiki
Is it possible to get my DocuSign developer account enabled with the SAML SSO option? I've contacted normal support and they told me to post here to see if the feature can be enabled on my account.
Jamie, I am sorry but you got wrong instructions from maybe an inexperienced Customer Service person. To configure SAML/SSO we need to get your PII and your account information. This is not a good forum for that. Please reach back to your Account Manager or Solution Engineer and they will help you.