Skip to content
This repository has been archived by the owner on Jun 26, 2021. It is now read-only.

Prompt parametr is doubled on renew requests if it's already provided #636

Closed
tamerlan opened this issue Oct 4, 2017 · 6 comments
Closed

Prompt parametr is doubled on renew requests if it's already provided #636

tamerlan opened this issue Oct 4, 2017 · 6 comments
Assignees
@rohitnarula7176
Labels
Enhancement Needs Info
Milestone
1.0.16

Comments

@tamerlan
Copy link

tamerlan commented Oct 4, 2017

Hi,

If you add 'prompt=login' to the extraQueryParameters than the renewal url will contains both 'prompt=login' and 'prompt=none' params and will fail.
@rohitnarula7176
Copy link
Contributor

@tamerlan By design , The prompt parameter is not configurable in the library. Can you explain why do you need to add a prompt parameter in the request.

@tamerlan
Copy link
Author

tamerlan commented Oct 5, 2017
edited
Loading

Hi @rohitnarula7176, to force user to re-enter the login/pass after the logout. Also that fixes the issue #630 (as a workaround). You can just remove the users 'prompt' params from the url when generate it for renew.

@sorbonad
Copy link

sorbonad commented Oct 9, 2017

The workaround seems to be working on W10/Chrome and W10/Edge. I am still need to do some tests since now I have to enter credentials twice.

tamerlan added a commit to tamerlan/azure-activedirectory-library-for-js that referenced this issue Oct 20, 2017
@tamerlan
Update prompt param if it's already provided in the url (fix fo Azure…
ab4cc99 
…AD#636)
@rohitnarula7176
Copy link
Contributor

rohitnarula7176 commented Oct 20, 2017
edited
Loading

@sorbonad @tamerlan I tried to follow the steps you described above by using 2 users, a corp account and a test account but I am not able to reproduce the issue. I always get token for the user account which I used to sign in. If you add 'prompt=login' to extraQueryParameter property on the config object, adal adds it to all the authorization requests. When you try to send prompt=login in the hidden iframe, adal adds prompt=none on top of it and you will get an error from AAD AADSTS90004: The request is not properly formatted. The parameter 'prompt' is duplicated. Can you please specify the version of adal you are using and provide us with a code repro for this issue.

@rohitnarula7176 rohitnarula7176 self-assigned this Oct 20, 2017
@tamerlan
Copy link
Author

tamerlan commented Oct 25, 2017
edited
Loading

@rohitnarula7176 You just get the exception which I would like to fix. "The parameter 'prompt' is duplicated". I've created the pull request #645 to fix this.
I use v1.0.15

@navyasric navyasric added this to the 1.0.16 milestone Oct 30, 2017
@lovemaths lovemaths mentioned this issue Nov 2, 2017
Merged
@rohitnarula7176
Copy link
Contributor

@tamerlan Thank you for your contribution. We cannot accept this pull request because your code allows the developers to overwrite the value for prompt in acquireToken methods which we cannot allow by design as it happens in a hidden iframe where prompt cannot be anything other than none. I have made the code change in dev branch such that if you pass prompt value through extraQueryParameter, it will only get added to the login method of adal which is the only one that does not specify prompt value by default. The recommended value for prompt is 'select_account' for login.

Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Assignees

@rohitnarula7176 rohitnarula7176

Labels
Enhancement Needs Info
Projects
None yet
Milestone
1.0.16
Development

No branches or pull requests
4 participants
@tamerlan @navyasric @rohitnarula7176 @sorbonad