Force login via ?prompt=login query string

[martinlaukkanen]

Hi,

How can I inject options that will force login on each authentication attempt?

Manually you would just append: ?prompt=login to the url.

E.g.:
https://login.live.com/oauth20_authorize.srf?response_type=code&redirect_uri=[.....]&prompt=login

But passing that to the 'authorizationURL' option results in a malformed URL as the prompt query string param is malformed; e.g.: https://login.live.com/oauth20_authorize.srf?prompt=login?response_type=code&redirect_uri=[...]

I can see exactly what it's doing (string concatenation) but can't see where in the code?

Thanks,

[martinlaukkanen]

Okay a bit of learning on my side, and I've added this functionality in the above pull request, can be used to force login as follows:

app.get('/auth/windowslive',
passport.authenticate('windowslive', { scope: ['wl.signin', 'wl.basic'], prompt: 'login' }));

[vhmth]

Hey @martinlaukkanen can you link to where that value for prompt is documented? Looking here, it seems like the valid values don't include login:

https://stackoverflow.com/a/14393492/696130

[vhmth]

It seems like I can't force the selection no matter what. I think authorizationParams needs to be implemented here.

[martinlaukkanen]

Hi, not sure where I originally found that for the above pull request, but a quick look at the MS documentation and they list a few parameters not detailed in the stackoverflow link above:

https://docs.microsoft.com/en-us/azure/active-directory/develop/active-directory-protocols-oauth-code

That document refers to the new MS Auth endpoints and not necessarily the old Live/Passport endpoints, but that option works for both in my tests.

[vhmth]

Ah thanks @martinlaukkanen!