Web API - Authenticate users using Azure AD SAML Protocol without being redirect to Microsoft Login Page

Eduardo Cintra da Costa 1 Reputation point
2020-06-19T13:08:53.307+00:00

It's my first time with Azure AD and SAML protocol, I want to know if it's possible to add a user authentication request to Azure AD without being redirecting to Microsoft Login Page? If so, how it can be done?

Basically, I want to send the email and password and authenticate to Azure without leaving the page of my Mobile application.

Not Monitored
Not Monitored
Tag not monitored by Microsoft.
37,736 questions
0 comments No comments
{count} votes

1 answer

Sort by: Most helpful
  1. JamesTran-MSFT 36,541 Reputation points Microsoft Employee
    2020-06-29T22:54:27.407+00:00

    @Eduardo Cintra da Costa
    I was researching your issue and it looks like you might've asked the same question on Stack Overflow. I'll paste the link and accepted answer below.

    Answer:
    The SAML specification supports the SP sending the user name in the SAML authn request to the IdP. However, not all IdPs support this. The SAML specification does not support sending the password. Therefore, unless the user is already logged in at the IdP, they will always be prompted to enter their password.

    Reference: https://stackoverflow.com/questions/62438529/asp-net-api-authenticate-users-using-azure-ad-saml-protocol-without-open-micro

    Additional Links:
    Single Sign-On SAML protocol
    How Azure AD uses the SAML protocol

    0 comments No comments