pxt-microbit icon indicating copy to clipboard operation
pxt-microbit copied to clipboard

Published 20 hours ago verified publisher icon microsoft

Zero-prompt SSO not working for Google accounts

Open eanders-ms opened this issue 2 years ago • 1 comments

When we pass prompt="none" to google oauth, we get back the error:

  {
    "error":"access_denied"
  }

At this point we fallback to interactive login, so it is non-fatal, but we should get this working (if possible).

eanders-ms avatar Jun 27 '23 18:06 eanders-ms

I tried various url parameter configurations, including:

  • Removed access_type: offline, so that we don't request a refresh token
  • Explicitly include openid scope
  • Include include_granted_scopes param

No luck. All result in consent prompt the next time the user signs in.

I suspect that submitting our google app for verification would improve this. We're currently an unverified app.

eanders-ms avatar Sep 03 '24 04:09 eanders-ms