Hello!
I tried setting up an external login option for a dynamics portal, using OIDC.
The implicit flow works fine by setting up these site settings:
(Authentication/OpenIdConnect/[provider]/) Authority, ClientID and RedirectUri.
However the OIDC provider in question only supports the authorization code flow, which I've not been able to get working.
Login simply fails with the above settings.
So I set the ResponseType to 'code' which now halfway works. It redirects to the OIDC provider where the user can log in and grant consent. Upon redirecting back to the specified redirect URI( portal.domain.com/signin-provider) you get a 404.
(I've also specified the ClientSecret and the discovery(MetadataAddress setting) )
Following the guide/documentation on the subject I've tried registering an app in Azure AD without any success. I've also tried adding the redirect URI to the existing Microsoft CRM portals app, also without success.
I'm assuming this is because we're now only getting an access code in return, and not an ID token?
Is the authorization code flow not supported or am I doing it wrong?
I assumed that, as long as the ResponseType was set to code and the metadata/secret provided, back channel communications would trigger on its own. Do I need custom code for this to work?
Any suggestions are welcome,
thank you!
