FusionAuth
    • Home
    • Categories
    • Recent
    • Popular
    • Pricing
    • Contact us
    • Docs
    • Login

    FusionAuth Microsoft OpenIDConnect indentity provider login PKCE issues

    Scheduled Pinned Locked Moved Unsolved
    Q&A
    2
    3
    970
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • D
      devops 0
      last edited by

      Hello i hope you are doing great. A few weeks ago i started an implementation of social Login for Microsoft accounts (Azure AD).

      Obviously i read the fusionauth documentation as a base to know how to implement this feature and because i am using the ReactJs Application, the packaged i am using is https://fusionauth.io/docs/v1/tech/client-libraries/node

      As the documentation says the way to implement this is with OpenIdConnect, so i started using this identity provider and the configuration was added. At the beggining this was configured using the OAuth 2.0 v2 endpoints.. But i had an issue with PKCE, apparently there is no way to pass the challenge code to the fusionauthClient.identityProviderLogin method to complete the identity provider login flow.

      So i just changed the configuration to OAuth 2.0 v1 endpoints, and from there the identity provider login works fine with Microsoft Accounts.. But when i try with Microsoft enterprise accounts the identity provider login fails .

      So, with this context i have two questions:

      1. Is this issue related with the Oauth 2.0 version selected
      2. If yes.. Is there a way to pass this challenge code to the fusionAuthClient to complete this the identity provider flow. If not possible with the fusionauthClient, Is there a way to do it with the fusion auth api endpoints?

      I think this is it. I really appreciate your help with this.

      danD 1 Reply Last reply Reply Quote 0
      • danD
        dan @devops 0
        last edited by dan

        @devops-0 Is this a duplicate of https://fusionauth.io/community/forum/topic/2049/about-azure-ad-v2-vs-v1-and-fusionauth ?

        --
        FusionAuth - Auth for devs, built by devs.
        https://fusionauth.io

        D 1 Reply Last reply Reply Quote 0
        • D
          devops 0 @dan
          last edited by

          @dan Good afternoon... Thanks for answering... Yeah, it is duplicated.. Sorry it is the first time for me using the FA Forum and Because of that i made the mistake to duplicate the POST.

          So, please go ahead and remove this one. Thank you

          1 Reply Last reply Reply Quote 0
          • First post
            Last post