[英]Azure AD B2C and MS Teams app (bot + tab) auth
We are working on integrating our app with MS Teams using a Teams app with a bot and a tab and we are struggling with the authentication.我们正在使用带有机器人和选项卡的 Teams 应用程序将我们的应用程序与 MS Teams 集成,我们正在努力进行身份验证。
Our scenario is:我们的场景是:
Our challenges are:我们的挑战是:
OAuthPrompt
for Teams following this sample but the challenge we've seen is that the user needs to sign in every time that opens the bot (ie there refresh token is not working) and also we are not able to send a "domain_hint" query string to differentiate our customers.OAuthPrompt
for Teams 进行身份验证,但我们看到的挑战是用户每次打开机器人时都需要登录(即刷新令牌不起作用),而且我们无法发送“domain_hint”查询字符串来区分我们的客户。 Anyone had similar experiences dealing with MS Teams apps for multiple Azure AD tenants using Azure AD B2C?任何人都有过使用 Azure AD B2C 为多个 Azure AD 租户处理 MS Teams 应用程序的类似经历吗? How's the best way you recommend to handle this scenario?
您推荐处理这种情况的最佳方法是什么?
Your help would be appreciated!您的帮助将不胜感激!
Thanks in advance!提前致谢!
If it helps to someone, after some research, we are doing the following for our scenario:如果它对某人有帮助,经过一些研究,我们正在为我们的场景执行以下操作:
For the SSO in the tabs, given the limitation of OAuthPrompt
to don't refresh tokens (we don't want users to sign in every time the token expires) we are following this solution posted months ago https://github.com/igrep/example-teams-bot-with-ms-account-refresh-token .对于选项卡中的 SSO,鉴于
OAuthPrompt
限制不刷新令牌(我们不希望用户在每次令牌过期时都登录),我们遵循几个月前发布的此解决方案https://github.com/ igrep/example-teams-bot-with-ms-account-refresh-token 。
For handling multiple Azure AD tenants within B2C, given that we are using predefined user flows and we need to build a custom sign-in for our scenario, we are going to pass the get and pass the domain_hint
from MS Teams to Azure AD B2C.为了在 B2C 中处理多个 Azure AD 租户,假设我们正在使用预定义的用户流并且我们需要为我们的场景构建自定义登录,我们将传递 get 并将
domain_hint
从 MS Teams 传递到 Azure AD B2C。
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.