none
Getting AADSTS50058 ("A silent sign-in request was sent but no user is signed in")

    Question

  • Hi! My ("code") flow is working perfectly when I sign the user in with prompt=login and the login.microsoftonline.com endpoint. I can get the access token and make API calls. Furthermore, I see that MS is setting a bunch of cookies after the authorization, etc. All is well (yay!)

    But if I immediately go back with prompt=none, I get the dreaded:

    login_required | AADSTS50058: A silent sign-in request was sent but no user is signed in. The cookies used to represent the user's session were not sent in the request to Azure AD. This can happen if the user is using Internet Explorer or Edge, and the web app sending the silent sign-in request is in different IE security zone than the Azure AD endpoint (login.microsoftonline.com). Trace ID: ce546152-caa1-4b63-8541-0d69a3eb0e00 Correlation ID: c92cf59f-a573-4082-a44f-c9822e8621a9 Timestamp: 2017-04-21 17:09:45Z

    (I need this to work so I can "re-login" the user on a subsequent visit, nominally using a hidden iframe. For debugging, I'm just using the basic browser and still seeing problems).

    To the best of my (limited!) abilities, I've verified that the response cookies from the initial prompt=consent flow are included in the second prompt=none, but clearly something is wrong! I've tried "keep me signed in" etc. - no diff. Interestingly(?), google's auth provider works perfectly in all cases I've tried. BTW, this is using Chrome, so I don't think it is related to IE's security zones, etc.

    I could sure use some help on this! Thanks so so much!



    • Edited by ehahn9 Friday, April 21, 2017 6:09 PM
    Friday, April 21, 2017 5:34 PM

All replies