Dynamics Community Forum Thread Details

Self Service Portal filling in UPN prefix before Sign In

Hi,

I have an out of the box Self Service D365 Portal set up to authenticate with Azure AD. I'd like my users to enter their UPN prefix before clicking the Sign In button, as their UPN is in the format username@company.com, not email address and the sign in experience would be quite confusing. I have been able to capture the username and construct the authentication URL with the login_hint appended at the end.

https://login.windows.net/{APPID}/oauth2/authorize?client_id={ClientID}&redirect_uri={URI}%2F&response_mode=form_post&response_type=code%20id_token&scope=openid%20profile&state=OpenIdConnect.AuthenticationProperties{???}&nonce={???}&login_hint=jsmith@company.com

The browser authenticates with Microsoft as when I click the out of the box Azure AD sign in button after clicking on the URL I generate above, it automatically logs me in without asking for credentials.

I've also tried doing an AJAX post of the values and using fiddler I can see the correct values for the query string above being returned, but then I get a CORS error and tried the recommendations on this post, but still no luck.

Is there a way to get the Authentication Properties and Nonce values missing in the query string above?
Is there an easier way to pass the login hint to Azure AD and ensure the Portal recognises the login?