Why we can click login button multiple times

Kazuki.Sato 1 Reputation point


We are using Microsoft Oauth2.0 for our app. It shows 'Stay signed in' page.
In this page, we can click Yes and/or No multiple times. When I click No twice after few seconds, same request is post.

We are preventing the login if same request came to block replay attack. So user fails to login.
Is there any way to restrict to click the buttons multiple times?

Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
19,849 questions
{count} votes