OAuth 2.0 Implicit Grant flow

From PiRho Knowledgebase

Revision as of 05:55, 3 May 2025 by Dex (talk | contribs) (Created page with "Category:OAuth 2.0 Don't use the Implicit Grant Flow any more! Most web browsers now block 3rd Party cookies so the authentication pages don't work properly. Microsoft does not allow its authentication dialog to open in an I-frame. The only way to use the Implicit Grant Flow is to redirect the whole page to refresh the token. Reference: https://stackoverflow.com/questions/59837948/authcontext-login-causes-refused-to-display-login-microsoftonline-com-in Stack Overfl...")

(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)

Jump to navigation Jump to search

Don't use the Implicit Grant Flow any more! Most web browsers now block 3rd Party cookies so the authentication pages don't work properly. Microsoft does not allow its authentication dialog to open in an I-frame. The only way to use the Implicit Grant Flow is to redirect the whole page to refresh the token. Reference: [Stack Overflow: authContext.login() causes “ Refused to display ‘login.microsoftonline.com…’ in a frame because it set ‘X-Frame-Options’ to ‘deny’ ”]

Retrieved from "http://knowledgebase.pirho.net/index.php?title=OAuth_2.0_Implicit_Grant_flow&oldid=226"

OAuth 2.0

Navigation menu