Microsoft Azure AD won't forget last user (auth0-lock)

jan-at-futr · June 11, 2019, 5:34pm

I have auth0-lock set up to log in through a MS Azure AD portal.

I want it to forget the last logged in user, so that I can switch between users as required for testing and such.

The problem is, despite using { rememberLastLogin: false }, the MS Azure AD portal still auto-logins in through the previously used user automatically — the popup flashes up and disappears again before I’m able to intervene. Help!

const auth = new (Auth0Lock as Auth0LockStatic)(api.auth0ClientId, process.env.AUTH0_DOMAIN as string, {
    auth: {
      redirect: false,
      responseType: 'token id_token',
      params: {
        // AUTH0_ADGROUPS_PROPERTY in JWT required by the server for auth-enabled bots
        scope: `openid ${process.env.AUTH0_ADGROUPS_PROPERTY}`
      },
      sso: false
    },
    rememberLastLogin: false,
    autoclose: true,
    language: api.locale
  });

kstrongholte · January 3, 2020, 10:34pm

When switching between users, are you logging out from the IdP (i.e. Microsoft AD)?

Unless you’re including the federated parameter in your call to the /v2/logout endpoint, only the Auth0 session will be invalidated and subsequent logins asking for AD credentials will use the existing IdP session.

Please take a look at the following articles for more information:

Topic		Replies	Views
Deprovision/Delete/Block use immediately when user is deleted/blocked in Azure AD Help lock , auth0	4	3668	October 26, 2020
Users are authenticated despite the choice not to be remembered Help	2	1958	April 8, 2022
Staying in Sync with External Identity Provider Help azure-ad , enterprise-connectio	3	3673	July 17, 2019
Microsoft Azure AD option not available through Auth0 SSO Help auth0	7	4236	January 11, 2019
rememberLastLogin Help lock , auth0 , api	5	6895	December 23, 2018

Microsoft Azure AD won't forget last user (auth0-lock)

Related Topics