Multiple Azure AD web apps Authentication

Dhoddi, Tarun 1 Reputation point
2020-04-07T11:17:09.587+00:00

we created 2 sets of applications using azure ad apps, 1 set(only web app-Dashboard implemented using azure B2B active-directory-dotnet-graphapi-b2bportal-web) and another set(web app with web API web app which displays data from the web api using Microsoft identity as mentioned in the link)
active-directory-dotnet-webapp-webapi-openidconnect

The 2 applications were working as expected. Now we have a requirement to implement that the applications would not ask for the sign In if anyone the applications logged in the browsers.

Currently, if the user clicks on the Sign In button it was automatically logged to the user if any one of the applications was logged in the browser.

Can anyone suggest how can we achieve the same? Any references, suggestions or samples will helpful.

Azure App Service
Azure App Service
Azure App Service is a service used to create and deploy scalable, mission-critical web apps.
6,963 questions
Microsoft Entra External ID
Microsoft Entra External ID
A modern identity solution for securing access to customer, citizen and partner-facing apps and services. It is the converged platform of Azure AD External Identities B2B and B2C. Replaces Azure Active Directory External Identities.
2,664 questions
0 comments

2 answers

Sort by: Most helpful
Most helpful Newest Oldest
  1. soumi-MSFT 11,716 Reputation points Microsoft Employee
    2020-04-07T11:32:32.723+00:00

    @Dhoddi, Tarun , The ask is really not clear. if you are trying to implement single signon for your OAuth apps, and if you have used either adal or msal libraries to write the code, the SSO feature should be available automatically. The sample that you have used uses Open ID Connect as the protocol which issues access tokens and refresh token to the user who has authenticated to the app. In the same browser if another app is accessed, the same user would be automatically logged in because the browser maintains the session of that user. The session for that user would be maintained until either the browser is closed or the access token expires (after 1 hour as set by default) and the refresh token is not used.

    Do let me know if this explanation doesnt help, do let share your exact requirement, so that we can help further.

    Hope this helps.

    Do let us know if this helps and if there are any more queries around this, please do let us know so that we can help you further. Also, please do not forget to accept the response as Answer; if the above response helped in answering your query.

  2. Stanley Tonkonogy 0 Reputation points
    2023-12-20T19:55:03.0333333+00:00

    Try the MSAL single sign-on examples, which seem to depend on cookies. For SAAS applications (Gallery) the approach is simpler to associate multiple applications to a single set of AAD credentials.

    0 comments