We are using react-aad-msal to authenticate users with Azure AD via AD B2C. B2C is configured with custom policies, but nothing specific to logout. We are passing authority, domain_hint and login_hint in authenticationparameters which change dynamically based on what user enters in the application email prompt before they are redirected to B2C login. The initial login works fine, however after calling authProvider.logout() if different use tries to login and his external idp doesn't change, but login_hint does it still somehow holds on to the token of the previous user. I see it going to post logout redirect uri. Local storage is empty, authenticationState is Unauthenticated, but then out of the blue the token of the previous user appears in local storage. Setting prompt to 'login' doesn't help. Anyone had similar issues? Where is it getting the token from? Strangely enough it works correctly in FireFox, but not in Chrome. Also, after changing the user it sometimes randomly goes into endless loop with a message that login is already in process in the browser console.
react-aad-msal library reuses previous user token after logout
843 Views Asked by Marina Gurevich At
0
There are 0 best solutions below
Related Questions in AZURE-AD-B2C
- Implementing Azure AD B2C Authentication in .NET 8 Blazor Project (RenderMode: InteractiveAuto)
- B2C Login is showing me an error page after entering credentials. When clicked on Sign in button, it's logging me in without asking for creds
- How to authenticate only Local and Guest users in Azure AD B2C and add custom claims in token?
- how to get refresh token in msal-browser Azure AD B2C login?
- Azure B2C MFA custom policy flow 'try another way'
- Azure AD B2C login getting error The redirect URI 'localhost:3001' provided in the request is not registered
- Azure AD B2C login with Microsoft identity provider error: Proof Key for Code Exchange is required for cross-origin authorization code redemption
- Azure B2C cannot use Okta as IdP via OIDC - 'Signature validation failed'
- Need to pass custom claims to B2C Custom Policy from a React Application
- How to change Azure AD User invite email template and Accept invite link, Currently it's allowing text only, can we make like HTML
- Azure PIM role activation in B2B environment
- How to prevent Login in AD B2C based on an extension claim type using User Flows
- AADSTS9002326: Cross-origin token redemption is permitted only for the 'Single-Page Application' client-type. Request origin: 'capacitor://localhost'
- azure b2c custom policy failed to get access token
- B2c tenant Creation and creation of users/apps from main tenant using terraform. Is that possible?
Related Questions in MSAL.JS
- msal-browser with a non-Microsoft identity provider is refreshing tokens every time acquireTokenSilent called
- BrowserAuthError: popup_window_error: Error opening popup window on @azure/msal-browser 2.16.1
- Azure angular msal/browser package is opening blank popup when trying to log into teams
- TypeError: request.deviceCodeCallback is not a function when using MSAL Node
- How to build a library that can be used in various types of applications (executables, web, etc.) using msal-node?
- When logging in with MsalAuthenticationTemplate and it redirects me to my website, it gives a rendering error
- Ionic React Android, unable to get access token after redirect
- OUTLOOK: MAC: Add-in using MSAL/GraphAPI, Refresh token for ssoSilent fails
- Encounter CROS error while trying to get key vault secrets in my Angular app(using Msal.js)
- Properly secure a Vue 3 SPA with MSAL browser and Vue router navigation guards
- Getting Application roles in JWT token for external users and Microsoft internal users after the Authentication
- MSAL js, Does extraScopesToConsent function properly during the loginRedirect workflow?
- MSAL authentication in Angular Logout redirect problem
- AADB2C90085 error every time user is redirected to applicaiton
- msal-browser failed in Office Addin Dialog API
Related Questions in AZURE-AD-B2C-CUSTOM-POLICY
- B2C Login is showing me an error page after entering credentials. When clicked on Sign in button, it's logging me in without asking for creds
- Azure B2C MFA custom policy flow 'try another way'
- I want to created a Azure Policy User and or device base to block certain websites
- Azure B2C cannot use Okta as IdP via OIDC - 'Signature validation failed'
- Need to pass custom claims to B2C Custom Policy from a React Application
- How to prevent Login in AD B2C based on an extension claim type using User Flows
- Multiple policys sharing same key
- "An invalid OAuth response was received" from azure adb2c custom policy oauth2
- Is it possible to embed an iframe within a B2C custom website?
- How to auto redirect to Auth0 IDP from Azure AD B2C custom polcieis based on certain condition
- Unable to get custom user properties (user_id) from Auth0 in Azure AD B2C claims
- Azure AD B2C - Multi Tenant Applicatication using custom Flows
- stuck in the Bearer error="invalid_token", error_description="The signature key was not found"
- How to Pass User Input Values from One Technical Profile to Another in Azure AD B2C Custom Policy?
- Can I send emails directly from Azure AD B2C policies or do I need to utilize an external service?
Related Questions in REACT-AAD-MSAL
- How Do I Mock MSAL Authentication?
- Login through AAD (Azure Active Directory) in React app doesn't working
- react-aad-msal library reuses previous user token after logout
- Reactjs with Azure Ouath
- Idiom for keeping user state during login with react-aad-msal
- Error 431 Request Header Fields Too Large after enabling Msal authentication to app
- MSAL Auth stores authentication information in local storage - How to limit storage of information
- acquireTokenByClientCredentials in @azure/msal-react?
- Azure Access Token react-aad-msal
- Authorizing SPA for an API
- REACT application to call secure Azure WEBAPI Service - NO USERS
- How to Redirect automatically to a page/path on login - MSAL React SPA
- Calling web api from react SPA using react-aad-msal missing scope
- Directly redirect to AAD login page on hitting the URL in browser
- AADSTS500112: The reply address does not match the reply address provided when requesting Authorization code
Trending Questions
- UIImageView Frame Doesn't Reflect Constraints
- Is it possible to use adb commands to click on a view by finding its ID?
- How to create a new web character symbol recognizable by html/javascript?
- Why isn't my CSS3 animation smooth in Google Chrome (but very smooth on other browsers)?
- Heap Gives Page Fault
- Connect ffmpeg to Visual Studio 2008
- Both Object- and ValueAnimator jumps when Duration is set above API LvL 24
- How to avoid default initialization of objects in std::vector?
- second argument of the command line arguments in a format other than char** argv or char* argv[]
- How to improve efficiency of algorithm which generates next lexicographic permutation?
- Navigating to the another actvity app getting crash in android
- How to read the particular message format in android and store in sqlite database?
- Resetting inventory status after order is cancelled
- Efficiently compute powers of X in SSE/AVX
- Insert into an external database using ajax and php : POST 500 (Internal Server Error)
Popular Questions
- How do I undo the most recent local commits in Git?
- How can I remove a specific item from an array in JavaScript?
- How do I delete a Git branch locally and remotely?
- Find all files containing a specific text (string) on Linux?
- How do I revert a Git repository to a previous commit?
- How do I create an HTML button that acts like a link?
- How do I check out a remote Git branch?
- How do I force "git pull" to overwrite local files?
- How do I list all files of a directory?
- How to check whether a string contains a substring in JavaScript?
- How do I redirect to another webpage?
- How can I iterate over rows in a Pandas DataFrame?
- How do I convert a String to an int in Java?
- Does Python have a string 'contains' substring method?
- How do I check if a string contains a specific word?