cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Azure B2C in a frame because it set 'X-Frame-Options' to 'deny'.

ThusharaManchanayake
Copper Contributor

‎May 19 2023 01:00 AM

‎May 19 2023 01:00 AM

Azure B2C in a frame because it set 'X-Frame-Options' to 'deny'.

Hi,

I am looking to add our client's customer web portal as Microsoft Team App. I used the Developer Portal to create a Personal App with a URL. Our program relies on third-party authentication services such as Azure B2C, Apple ID, and certain authentication and authorization for accounting system connections. We received the following error when the program performed the redirection for Azure B2C login. Many developers recommend permitting third-party cookies for that website. I tested it, as well as allowing all cookies. I'm still having no luck. Could someone please respond to the below questions?

ThusharaManchanayake_0-1684481475759.png

 

Has anyone succeeded in redirecting to Azure B2C from the MS Team App? Any suggestions to fix the above issue are much appreciated.

Are you proposing the MS Team App platform for the addition of such an app with numerous third-party integrations?

 

 

 

 

 

Labels:
2,226 Views
0 Likes
4 Replies
Reply
4 Replies
Sayali-MSFT

‎May 21 2023 09:46 PM

‎May 21 2023 09:46 PM

Re: Azure B2C in a frame because it set 'X-Frame-Options' to 'deny'.

@ ThusharaManchanayake - Thanks for reporting your issue.
We will check this at our end and will get back to you.
0 Likes
Reply
ThusharaManchanayake

‎May 23 2023 02:05 AM

‎May 23 2023 02:05 AM

Re: Azure B2C in a frame because it set 'X-Frame-Options' to 'deny'.

Thanks for the recommendation!! I will take a look.
1 Like
Reply
Rajnivas_Thiyagarajan

‎Apr 17 2024 12:37 AM - edited ‎Apr 17 2024 12:42 AM

‎Apr 17 2024 12:37 AM - edited ‎Apr 17 2024 12:42 AM

Re: Azure B2C in a frame because it set 'X-Frame-Options' to 'deny'.

Hi @ThusharaManchanayake @Sayali-MSFT ,


Have found the issue and rectified?

Currently, we're in the process of integrating Single Sign-On (SSO) functionality into our React/Typescript based iframe web application, which operates within an iframe.
For user authentication, we're utilizing Azure AD B2C, while AWS Cognito serves as our internal database for user data management. During development, within the iframe environment, we successfully implemented SSO login without any issues. However, upon deployment of our iframe application into the parent web application, we encountered an obstacle when trying to initiate the SSO login process. Specifically, we received the error message:
"Refused to display 'https://test.b2clogin.com/' in a frame because it set 'X-Frame-Options' to 'deny'."
Upon investigation, it became apparent that the 'X-Frame-Options' header for 'https://test.b2clogin.com/' is configured to 'deny', thereby preventing its display within iframes. Are there any potential solutions or workarounds for this issue?

We got stucked in the issue for some day, and can't find any potential fixes :sad:.
But found out your related threads having the same cause .
Thanks for your help in Advance! :smile:

try.png

0 Likes
Reply