Forum Discussion

Larry Clarkin's avatar
Larry Clarkin
Copper Contributor
Feb 28, 2018

Stream "sign in" or "sign up" page blocking video views

We are trying to create links to stream videos that we can post in e-mail or on our legacy / on-premises sharepoint portal that a user can "1 click" to access a video.  Before I dive into this, let m...
Michele Ferrari's avatar
Michele Ferrari
Former Employee
Oct 25, 2018

 

This link can be used to point directly to a specific video based on the ID (which you can retrieve going into stream app and copy it from the address bar of your browser)

 

Example:

https://web.microsoftstream.com/video/b9196505-8579-4695-b251-8991f26eba6c?noSignUpCheck=1&ru=https%3A%2F%2Fweb.microsoftstream.com%2Fvideo%2Fb9196505-8579-4695-b251-8991f26eba6c?noSignUpCheck=1&ru=https%3A%2F%2Fweb.microsoftstream.com%2Fvideo%2Fb9196505-8579-4695-b251-8991f26eba6c

 

User Experience:

 

From a user inside the CORP, user will get SSO and stream will open directly in the browser without any user “friction”.

 

From an user outside the CORP User redirected to login.microsoftonline.com (as we specified nosignupcheck=1 which skips the “marketing” page)

 

 domain_hint or login_hint does not work to avoid the login.microsoftonline.com UX experience but at the end, the UPN is copied over into the WAP login page so, not so bad.

 

Browser is then redirected to your WAP:

 

And the video starts immediately after.

 

 

Michele

James Van Ryn's avatar
James Van Ryn
Copper Contributor
Oct 25, 2018

Hi Michele,

 

It's nice that there's a workaround for this, but I'm wondering when we can expect a more permanent solution. We can't expect our content owners to manually modify every link for their videos since some of them have 100's of videos. Is there any chance you can add the noSignUpCheck=1 as a default setting in the link that is created when a user clicks on the Share button for a video?

  • Marc Mroz's avatar
    Marc Mroz
    Icon for Microsoft rankMicrosoft
    Oct 25, 2018

    I believe we have a project going to remove the intermediate marketing page and instead go directly to the login.microsoftonline.com login screen. ChrisKnowlton on our team would know more info on that project.

     

    In terms of ADFS or home realm detection we'd need to do a bit more work there to skip the login.microsoftonline.com login page and go to your specific internal login page. Can you add your votes and comments to this entry in our ideas forum: https://techcommunity.microsoft.com/t5/Microsoft-Stream-Ideas/Support-Windows-Home-Realm-in-Stream-WHR/idi-p/116253

  • Ulf Lundqvist's avatar
    Ulf Lundqvist
    Iron Contributor
    Oct 25, 2018

    I agree. We will simply further use YouTube with private links for our content. Sad when it feels like a small fix to get this in order.

    Also, you have to fix video views in Yammer. Linking video från Stream now says "Working on it" and does not always embed the video player. It does not either work in iPhone or Android apps (Teams/Yammer).

    • Marc Mroz's avatar
      Marc Mroz
      Icon for Microsoft rankMicrosoft
      Oct 25, 2018

      We are also working with the Yammer team on making the Stream url unfurling better as well.  Saili Raje is the PM on our team working on that project.

      • Peter Strong's avatar
        Peter Strong
        Copper Contributor
        Nov 15, 2018
        We are tyring to use the embed code for MSStream videos in a sharepoint (online) page, which as other users have said works fine in most browsers on the desktop except for Safari (which has cross domain protection enabled by default - turning this off allows it to work).
         
        However we are trying to load the sharepoint page with an embedded MSStream video in a webview control using Xamarin forms however get the following error:
         
        11-14 11:55:07.426 W/zygote  (18172): Attempt to remove non-JNI local reference, dumping thread[INFO:CONSOLE(0)] "Refused to display 'https://login.microsoftonline.com/common/oauth2/authorize?response_type=id_token&client_id=<blah blah blah>' in a frame because it set 'X-Frame-Options' to 'deny'.", source: https://<oursharepoint host>/Pages/Videos.aspx (0)
         
        Same page works in Chrome, IE, Firefox on the desktop, ie user is signed in to SharePoint (online) and MSStream embedded video loads.
         
        Safari does not work, and gives the following error in the console (similar to the Android emulator):

        [Error] Refused to display 'https://login.microsoftonline.com/common/oauth2/authorize?response_type=id_token&client_id=89bee1f7-5e6e-4d8a-9f3d-ecd601259da7&redirect_uri=https%3A%2F%2Fwebshell.suite.office.com%2Fiframe%2FTokenFactoryIframe&state=0e6d9d94-16b5-4793-96e4-670306e2801f&client-request-id=c942ede5-0c60-4c79-906b-193ece6ecddd&x-client-SKU=Js&x-client-Ver=1.0.15&nonce=b6e7a5d3-9a75-451e-aef1-77dd6a56d065blah blah blah>' in a frame because it set 'X-Frame-Options' to 'DENY'.
         
        Chrome on the mobile device loads the page ok.
         
        Can the X-Frame-Options for login.microsoftonline.com be opened up a little to allow working in an IFrame or at least from other Office 365 services (ie SharePoint)? And sooner the better!!! Otherwise we'll be looking for other video solution options...

Resources