Microsoft Secure Tech Accelerator
Apr 03 2024, 07:00 AM - 11:00 AM (PDT)
Microsoft Tech Community

SAML SSO Azure

Copper Contributor

Hi All,

 

I need help in refreshing assertion conditions (NotOnOrAfter) in between the active session.

I want to refresh NotOnOrAfter value whenever the time has been expired. This value is part of Azure AD SAML response. Refresh should happen between SP and IDP without interaction of browser.(which means I want to make a silent refresh in the background during any API call)

<Conditions NotBefore="2019-08-17T12:53:23.403Z" NotOnOrAfter="2019-08-17T13:58:23.503Z">

The issue I am facing is whenever I call Azure AD (with /saml/login) it is redirecting to some location.Is there any SP to AD(IDP) call API with which we can refresh the Assertion conditions in background
 

If I am calling /saml/login from backend during any API call to refresh. It is redirecting with 302.but I face below issue

Access to XMLHttpRequest at 'https://login.microsoftonline.com/e96d5130-6981-4abf-ae87-1b6e604aa4b6/saml2?SAMLRequest=fZJPb6MwEMW............. (redirected from 'https://*****.com/***') from origin 'https://*****.com' has been blocked by CORS policy: Response to preflight request doesn't pass access control check: No 'Access-Control-Allow-Origin' header is present on the requested resource.

https://stackoverflow.com/questions/63197711/refresh-saml-assertion-notonorafter-without-redirection...


0 Replies