APIM single signin sso

Aanchal Singh 1 Reputation point
2021-09-09T13:25:14.153+00:00

I was trying to use the single-signin APIM api's i.e "/generateSsoUrl" for generating the redirect url and using it to sign in into the developer portal. I was able to login using the api, but after logging in we were not able to click/navigate to any page. The user is not "really" logged in - Just the menu thinks the user is logged in and When i click any button on the Profile Menu, the user is either redirected to the /login page or is logged out.

I generated the redirect url using this: https://learn.microsoft.com/en-us/rest/api/apimanagement/2020-12-01/user/generate-sso-url

The redirect url generated by the above(witch is the legacy portal by the way): https://(my-service-name).portal.azure-api.net/signin-sso?token=xyz...
and if we tries to replace "portal" with "developer" and encode the token as well, then still the above behaviour is replicated.

Also, everything is working with the deprecated/legacy portal.

Azure API Management
Azure API Management
An Azure service that provides a hybrid, multi-cloud management platform for APIs.
1,862 questions
0 comments No comments
{count} votes

1 answer

Sort by: Most helpful
  1. Pramod Valavala 20,606 Reputation points Microsoft Employee
    2021-09-13T06:51:23.903+00:00

    @Aanchal Singh Looking at the requests the browser makes (using dev tools) for the portal experience, it seems the Get Shared Access Token API is used to fetch the token required.

    This is then used in the link for the developer portal as follows

       https://<apim-name>.developer.azure-api.net/signin-sso?token=<token-from-above-API-url-encoded>  
    
    0 comments No comments