Open Closed

Issue with AzureAD SSO Registration flow #5803


User avatar
0
Dev2ng created
  • ABP Framework version: v7.2
  • UI Type: Angular
  • Database System: EF Core (SQL Server)
  • Tiered (for MVC) or Auth Server Separated (for Angular): yes

Hi,

I am using Azure AD SSO and customized this to call the sso process on page load based on this solution :-

https://support.abp.io/QA/Questions/5328/Issue-with-Azure-AD-SSO-using-open-id-connect

We have scheduled cron job to fetch all the users from azure AD and then we are inserting those users to "AbpUsers" table. but we are not making any entry into "AbpUserLogins" table because in this table "ProviderKey" column is required which is unique for every user and we don't know how to create that.

So the issue is when someone tries to do SSO then that process checks the AbpUserLogins table, if the entry for that user is not there then the Registration page is opened. But we have the entry in "AbpUsers" table so his actual email is not allowed to be entered, by which some dummy entry is created for email to get that person in,

Its a BLOCKER for us.

Possible solution:-

  1. if there is any way through which we get the provider key of every user then we can insert that in the AbpUserLogins table so that no registration is shown while doing SSO.

  2. We can customize the registration process to not show that Registration page when SSO is done, which will then not check the entry inside "AbpUserLogins" table.

I would appreciate a reply as soon as possible

Thanks !!


2 Answer(s)
  • User Avatar
    0
    Dev2ng created

    Any update on this ?

  • User Avatar
    0
    maliming created
    Support Team Fullstack Developer

    hi

    The provider should be a fixed value. and the providerKey is the same as ClaimTypes.NameIdentifier

    https://github.com/dotnet/aspnetcore/blob/release/7.0/src/Identity/Core/src/SignInManager.cs#L703

Made with ❤️ on ABP v9.1.0-preview. Updated on November 01, 2024, 05:35