stackoom
  简体   繁体   中英

Azure mobile services with Azure AD auth user Claims

 原文  2014-07-03 22:52:14       cordova/ azure/ azure-mobile-services/ azure-active-directory

Question

I wonder how I can get claims back when authenticating users with azure mobile services using Azure AD.

I'm using azure mobile services to authenticate users in a phonegap app. The authentication flow works fine, the response I get back from the service is as follows 

{
    "userId": "Aad:o5ExTvSOMETHING_HEREpb0c",
    "mobileServiceAuthenticationToken": "A_TOKEN"
}

How can I get profile properties like full name, sign in name etc, so that I could at least output something like "Hello Lars", "Lars" being a claim returned.

After logging in, I redirect the user back to "home": 

LoginController.prototype.doLogin = function() {
    var that = this;
    client.login('Aad').done(function(response) {
       that.ons.navigator.resetToPage("page1.html", { title: 'Home' });
    }, function (error) {
        console.log(error);            
    });
};

When HomeController runs after signing in, client.currentUser is an object with the structure above: 

HomeController = function($scope) {
    $scope.controllerhello = "Welcome home!";
    if(client.currentUser == null) {
        $scope.ons.navigator.pushPage("login.html", { title: 'Sign in' });
    }
};

What I had hoped was a response like this: 

{
    "userId": "Aad:o5ExTvSOMETHING_HEREpb0c",
    "mobileServiceAuthenticationToken": "A_TOKEN",
    "claims": {
        userName: "someusername@me.onmicrosoft.com",
        fullName: "Lars"
    }
}

How, if, can I get these claims. Does it have to do with the application manifest under manage azure AD -> applications -> manage manifest ?

1 answers

solution1
 1 ACCPTED  2014-07-04 00:23:17

Mobile Services does not send AAD claims to the client, but it is fairly easy to get them from the server using a custom API. Most of the data you will want can be obtained by making a call to the AAD Graph API . This is where all of the information about your users is stored.

This blog post shows the steps to access the graph and present an AAD user's name on screen using a Node.JS backend. It's a little outdated in terms of the UI, but the concepts should still apply. Now, instead of clicking "manage permissions," you will go to "permissions to other applications" and set the appropriate application permissions on "Windows Azure Active Directory."

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question Azure notification and mobile services Ionic example for adding authentication to Azure Mobile Services? Azure Mobile Services 'Unexpected Communication failure' Display authenticated user - Cordova Azure AD Using Azure App Service Mobile App or Azure Mobile Services Offline Sync SQLite (Xamarin, Ionic, PhoneGap) Should I use Azure Mobile Services or stick with Web Api Using ripple authentication fails on azure mobile services (.net backend) Adding Live SDK to a Cordova/Ionic project that is using Azure mobile services Update tags in Azure Mobile Services from Cordova App Azure AD authentication for multiple domains
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM