- ABP Framework version: v7.2
- UI Type: Angular
- Database System: EF Core (SQL Server)
- Tiered (for MVC) or Auth Server Separated (for Angular): yes
Hi,
I am using Azure AD SSO and customized this to call the sso process on page load based on this solution :-
https://support.abp.io/QA/Questions/5328/Issue-with-Azure-AD-SSO-using-open-id-connect
We have scheduled cron job to fetch all the users from azure AD and then we are inserting those users to "AbpUsers" table. but we are not making any entry into "AbpUserLogins" table because in this table "ProviderKey" column is required which is unique for every user and we don't know how to create that.
So the issue is when someone tries to do SSO then that process checks the AbpUserLogins table, if the entry for that user is not there then the Registration page is opened. But we have the entry in "AbpUsers" table so his actual email is not allowed to be entered, by which some dummy entry is created for email to get that person in,
Its a BLOCKER for us.
Possible solution:-
if there is any way through which we get the provider key of every user then we can insert that in the AbpUserLogins table so that no registration is shown while doing SSO.
We can customize the registration process to not show that Registration page when SSO is done, which will then not check the entry inside "AbpUserLogins" table.
I would appreciate a reply as soon as possible
Thanks !!
2 Answer(s)
-
0
Any update on this ?
-
0
hi
The
provider
should be a fixed value. and theproviderKey
is the same asClaimTypes.NameIdentifier
https://github.com/dotnet/aspnetcore/blob/release/7.0/src/Identity/Core/src/SignInManager.cs#L703