Welcome Guest Search | Active Topics | Sign In | Register

Essential Objects Product Support Forum » All Products » Support » Single Sign On

Single Sign On Options
Previous Topic · Next Topic
Touchway
Posted: Wednesday, November 29, 2023 3:51:21 AM
Rank: Member
Groups: Member

Joined: 8/5/2016
Posts: 17
Hello, we have been using the browser for over 6 years, mainly to display websites from the intranet.

The topic of single sign-on is coming up more and more often. Somehow there are no clear answers here in the forum and nothing clear can be found in the API documentation either.

We actually always have a similar scenario:
1) User logs on to Windows at computer startup (= Windows Active Directory )
2) User opens our browser and opens intranet page (e.g. Microsoft Sharepoint, MS Office 365)
3) User has to enter username / password again, although he is already logged in.

In Microsoft Edge, on the other hand, it works in such a way that the user is already logged in and does not have to enter his password again.

How can I achieve the same result in EssentialObjects Browser?

Thanks!
Code: C# 

    




		

			




	
		Back to top
	
	
		

		

			
			
			
			
			
			
			
			
			
			
			 

		

		

			








	
	



	
	
		
		eo_support
	

	
		

		

			
				Posted: 
				Wednesday, November 29, 2023 9:40:29 AM
			
			
				
				
				
				
			
		

		

			




	
		Rank: Administration
Groups: Administration




Joined: 5/27/2007
Posts: 24,088

			
		   
	    

		    Hi,

What Url do you use to open the Intranet page? Do you use a UNC path such as:




    

        Code: 
        
        
\\severname\sharename\page

    





Or do you use a Url like:




    

        Code: 
        
        
http://servername/page

    





If you use the first form, then Chrome should automatically authenticate with your current user. However if you use the second form, then you must explicitly "whitelist" the server name through auth-server-whitelist command argument. You can pass extra command argument to the browser engine like this:




    

        Code: C#
        
        
EO.WebEngine.EngineOptions.Default.ExtraCommandLineArgs = "--auth-server-whitelist=\"servername\"";

    





Make sure you call this line before you create any WebView. For example, in the TabbedBrowser sample application, you can add this in Application_Startup inside App.xaml.cs/App.xaml.vb.

Please let us know if this works for you.

Thanks!

		

			




	
		Back to top
	
	
		

		

			
			
			
			
			
			
			
			
			
			
			 

		

		

			








	
	



	
	
		
		Touchway
	

	
		

		

			
				Posted: 
				Thursday, December 14, 2023 2:19:44 AM
			
			
				
				
				
				
			
		

		

			




	
		Rank: Member
Groups: Member




Joined: 8/5/2016
Posts: 17

			
		   
	    

		    Hi, 
it's always a http or https URL. Another typical case is logging in to Microsoft Office 365 or Microsoft Online

So the typical url is this:
https://login.microsoftonline.com?username=xxxxx@domain.com

We've tried everything, but nothing has worked:
We found this idea, passing some extra command line arguments to the browser, but this doesn't seem to work either.



    

        Code: C#
        
        
EO.WebEngine.Engine.Default.Options.ExtraCommandLineArgs = @"--auth-whitelist=*autologon.microsoftazuread-sso.com,*login.microsoftonline.com,*login.live.com,*login.microsoft.com";

    





What is also not clear is whether you have to separate the URLs with quotation marks or not. Whether wildcards are allowed or not, etc.



    

        Code: C#
        
        
EO.WebEngine.Engine.Default.Options.ExtraCommandLineArgs = @"--auth-whitelist=\"autologon.microsoftazuread-sso.com\"";

    





I don't think we can be the only ones who have never felt the need to use SSO. Are there no clear instructions anywhere on how to configure this EO Browser thing correctly? I mean, on the other hand, EdgeWebView2 works out of the box! After such a long time, we are really thinking about stopping buying EO Browser and switching to Edge. SSO is a killer criterion for us.

I hope there is a solution after all.

		

			




	
		Back to top
	
	
		

		

			
			
			
			
			
			
			
			
			
			
			 

		

		

			








	
	



	
	
		
		eo_support
	

	
		

		

			
				Posted: 
				Friday, December 15, 2023 11:10:43 AM
			
			
				
				
				
				
			
		

		

			




	
		Rank: Administration
Groups: Administration




Joined: 5/27/2007
Posts: 24,088

			
		   
	    

		    We have investigated this issue further and unfortunately there doesn't seem to be a solution. Built-in SSO support was added to Google Chrome browser since V111 and is controlled by this option:

https://chromeenterprise.google/policies/#CloudAPAuthEnabled

However the corresponding implementation is part of Google Chrome enterprise features and does not seem function in the open source Chromium branch. As a result, there does not appear to be a way to support this on Chromium based solutions even though official Google Chrome browser does support it. 

Sorry about it.
		

			




	
		Back to top
	
	
		

		

			
			
			
			
			
			
			
			
			
			
			 

		

		

			









            











  

    
    
		
		
		
		
		
		












	You cannot post new topics in this forum.


You cannot reply to topics in this forum.


You cannot delete your posts in this forum.


You cannot edit your posts in this forum.


You cannot create polls in this forum.


You cannot vote in polls in this forum.