Comments (4)
I will open a ticket.
Thanks for you fast support!
from microsoft-authentication-library-for-dotnet.
@GruberMarkus can you please share the code you are writing for this? For consent, are you talking about the first time a user logs in? Do you have a screenshot?
from microsoft-authentication-library-for-dotnet.
There is even no code neccessary. It is enough to open one of the two consent links I shared:
- https://login.microsoftonline.com/organizations/adminconsent?client_id=beea8249-8c98-4c76-92f6-ce3c468a61e6
- https://login.microsoftonline.com/organizations/v2.0/adminconsent?client_id=beea8249-8c98-4c76-92f6-ce3c468a61e6&scope=.default
I could break it down a bit further:
- All information I expect is shown when the link is opened by an account having the permissions to grant admin consent.
- When the link is opened by an account that does not have the permissions to grant admin consent, the logo and the name of the verified Microsoft Partner is shown, but not the name of the application. I would also expect to see the Terms of Service URL and the Privacy State URL, but they are missing, too.
In the attached screenshot, you can see that the "Need admin consent" web site does not show the name of the application.
I am quite sure that this is not an MSAL problem. Maybe you know a solution, or can tell me where I can report this problem?
from microsoft-authentication-library-for-dotnet.
You can use the Azure Portal to open a support ticket with Microsoft. The support team will get it to the service team if they cannot find a solution.
The web UI experience, including the authorization screens, is owned by the Identity Provider (Entra ID). Not by the SDK.
The main question here is - is this a regression? Did this ever work ?
I do not know the experience that well, but the "Terms and Conditions" should definitely appear in one of the authorization pages, there is even a CA policy to enforce it - https://learn.microsoft.com/en-us/entra/identity/conditional-access/terms-of-use
I think the name of app is shown on the first screen, on the "App XYZ wants you to login. Enter your username below".
Also, the name of the app in a public client application on Windows, Mac or Linux is not a reliable indicator. This is because on public client the app identity cannot be enforced by the OS. It's just a client ID and a redirect URI, both of them public pieces of information. Visual Studio's client ID is definitely reused by many apps.
from microsoft-authentication-library-for-dotnet.
Related Issues (20)
- [Feature Request] Allow POP extensibility API on all requests
- [Bug] "cannot convert from 'Microsoft.Identity.Client.BrokerOptions' to 'bool'" error when update Microsoft.Identity.Client.Broker to version 4.61.0 HOT 6
- [Epic] Use open telemetry data to see errors and performance
- Add more tags to open telemetry failure counter
- [Documentation] enabling pii and euii data in logging & exceptions HOT 7
- [Bug] Non reported breaking change on 4.61.0
- [Feature Request] In case of 404, ensure the exception message contains the URL without query params
- [Supportability Bug] Deprecate WithClientAssertion(string) as it leads to assertion expiration issues
- [Feature Request] Make AssertionRequestOptions testable
- [Bug] Problem with new version 4.61.1 HOT 3
- [Bug] MeasureDurationResult incorrect when running in linux HOT 3
- [Bug] Public Client with Broker Cannot Acquire Token Silently from the Token Cache on a Machine Never Login With WAM HOT 15
- [Engineering task] Check to see if Edge is installed on Agents before installing them
- Regression in Microsoft.Windows.Client 4.61.1? - System.TypeLoadException HOT 4
- [Bug] Microsoft.Windows.Client does not work with WinUI (.Net 6.0) HOT 8
- [Bug] Experimental Feature Oidc Authority HOT 3
- [Bug] Unable to Get Console Handle of Windows PowerShell ISE
- [Bug] "Work and school account" Option Doesn't Show on WAM Pop-up Window HOT 5
- [Bug] System.Net.Http.HttpRequestException was thrown intermittently when acquire token HOT 4
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from microsoft-authentication-library-for-dotnet.