cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
SOLVED

AJAX call from Sharepoint Online to Azure Web Application with AAD authentication

Michal Guzowski
Brass Contributor

‎Jul 18 2017 01:54 AM

‎Jul 18 2017 01:54 AM

AJAX call from Sharepoint Online to Azure Web Application with AAD authentication

Hi everyone,

 

I need your help.

 

I have web service on Azure. I'm making AJAX call to it from SPO (CORS implemented). If there is no authentication everything is fine. But then when I turn on AAD authentication for web service then it's not working and I get:

"XMLHttpRequest cannot load https://<App_URL>. Redirect from https://<App_URL> to 'https://login.windows.net/some_guid/oauth2_tokens/etc has been blocked by CORS policy: No 'Access-Control-Allow-Origin' header is present on the requested resource. Origin 'https://<tenant_name>.sharepoint.com' is therefore not allowed access."

 

I assume that it's because my web service makes redirection to login.windows.net and such redirection is not properly handled in terms of CORS.

 

I'm in the dead end. How to resolve such issue? Any ideas, solutions, advices?

 

Thanks in advance

Labels:
2,274 Views
0 Likes
3 Replies
Reply
3 Replies
Michal Guzowski

‎Jul 18 2017 06:51 AM

‎Jul 18 2017 06:51 AM

Re: AJAX call from Sharepoint Online to Azure Web Application with AAD authentication

Thanks for response.
Unfortunately that works only if user accessed directly web service at least one time. If not - same error as before. It's strange because web service does not require user assignment to access. Possible bug? What's a workaround? Access using app perms?
0 Likes
Reply
best response confirmed by Michal Guzowski (Brass Contributor)
Michal Guzowski

‎Jul 18 2017 12:35 PM

‎Jul 18 2017 12:35 PM

Solution

Re: AJAX call from Sharepoint Online to Azure Web Application with AAD authentication

I finally resolve my issue.

Since adal.js does not support app permissions (client id + secret) the only option to prevent issue when user does not visit app directly for the first time is to handle that manually. In other words I catch onerror event when sending XMLHttpRequest, set some flags (just to prevent loopback) and redirect user to special endpoint on my web service. This endpoint redirect user back where he comes from and that's it. Every next access to the Sharepoint page does not require such roundtrip since app has been visited for the first time and now pure adal.js works fine (adviced by @Pieter Veenstra).

1 Like
Reply
1 best response

Accepted Solutions
best response confirmed by Michal Guzowski (Brass Contributor)
Michal Guzowski

‎Jul 18 2017 12:35 PM

‎Jul 18 2017 12:35 PM

Solution

Re: AJAX call from Sharepoint Online to Azure Web Application with AAD authentication

I finally resolve my issue.

Since adal.js does not support app permissions (client id + secret) the only option to prevent issue when user does not visit app directly for the first time is to handle that manually. In other words I catch onerror event when sending XMLHttpRequest, set some flags (just to prevent loopback) and redirect user to special endpoint on my web service. This endpoint redirect user back where he comes from and that's it. Every next access to the Sharepoint page does not require such roundtrip since app has been visited for the first time and now pure adal.js works fine (adviced by @Pieter Veenstra).

View solution in original post

1 Like
Reply