Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

detect if silentlogin is possible in adaljs-angular4

Tags:

typescript

angular

azure-active-directory

adal.js

microsoft-adal-angular6

I'm using the library [email protected] in a angular 6 project. I try to do following:

  1. If a silentlogin (login without prompting the user for credentials) with office365 is possible, then do a silentlogin (with _adalService.login()

  2. If a silentlogin is not possible, then show a "login" button within a welcome-screen.

A silentlogin would be possible, when I'm authenticated to azure-ad / o365 and the cookie is still valid.

To find out, if a silentlogin is possible, i tried following:

try {
  let token = await this._adal.acquireToken(this._config.clientId).toPromise();
  return true;
} catch (e) {
  console.log('acquireToken error', e);
  return false;
}

But it always returns:

User login is required

But when calling _adalService.login() it does a silentlogin.

My question: How can i find out, if adaljs can login without prompting for credentials (it should be possible, like reading it from a o365-cookie)?

like image 387
Benjamin Schäublin Avatar asked Oct 17 '22 12:10

Benjamin Schäublin

1 Answers

Instead of trying to determine whether silent login is available, you should pass PlatformBehavior.Auto to the PlatformParameters parameter of AcquireToken.

The problem is that adal.js doesn't actually support the needed overload and you cannot specify this value as extraQueryParameter. For a moment there, I thought you could use the prompt query parameter, but that doesn't seem to be the case.

At first glance, it seems that you can't do it then. But your error message gives the clue.

From the adal.js source code, I can see that message is shown in this condition:

if (!this._user && !(this.config.extraQueryParameter && this.config.extraQueryParameter.indexOf('login_hint') !== -1)) {
    this.warn('User login is required');
    callback('User login is required', null, 'login required');
    return;
}

And in this article, the login_hint is described like this:

Can be used to pre-fill the username/email address field of the sign in page for the user, if you know their username ahead of time. Often apps will use this parameter during re-authentication, having already extracted the username from a previous sign-in using the preferred_username claim.

... all of which makes a lot of sense when you're looking to do a silent authentication, but still need to say who you're authenticating for.

To finally answer the question, it seems you should add '[email protected]' to your config.extraQueryParameter.

like image 57
Cobus Kruger Avatar answered Oct 22 '22 07:10

Cobus Kruger
Sign in to Comment

Related questions

ngrx/store not showing the updated values of a form
In IE 11 the favicon disappears on navigating to another page in Angular application
WARNING in ./node_modules/pdfjs-dist/build/pdf.js
Angular Material fade transition
ErrorHandler & RxJS 6.2.2
Angular 5: Access element inner html from the component for dynamically generated elements
Ionic 3 - Canvas draw is not perfect as per mouse/touch position
plain objects VS class instances for model objects
Is Angular faster than pure JavaScript when considering DOM manipulation?
How use infinite scrolling with angular 5+?
ng-bootstrap typeahead: how to handle Observable<Person[]> rather than Observable<string[]>
d3.js: run the same code in Angular app and on node.js
Angular 6 Bootstrap not found in ./src/.././src/app/app.browser.module.ts
Jest test succeed with error printed to console
How can I print a single component in Angular?
How send post with form-data in angular2
Micro frontend architecture advice
Error installing Angular using npm due to require-from-string
angular-cli how to add sass and or bootstrap?
Material icon not rendering properly

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!