Switching account not working with Office addin with Single Sign on
I am using the yeoman generator to generate the 'Office Add-in Task Pane project supporting single sign-on (localhost)' example. When I run the example in Word the user name and email are pasted into the document as expected.
But when I switch account by using the button in the upper-right corner of Word
the addin is still using the first selected account.
Is there a way to make the addin use the newly selected account without the need to close and open the addin?
The Office host application, Word in your scenario, requests the access token from the Microsoft identity platform for the current user. The Microsoft identity platform returns the access token to Office. Office caches the token on your behalf so that future calls to getAccessToken simply return the cached token. You must restart the host application to clear the cached token.
As a best security practice, always call getAccessToken when you need an access token. Office will cache it for you. Don't cache or store the access token using your own code.
The Office JavaScript API (OfficeJS) doesn't provide any property or method to refresh the token or mark it expired. So, I'd suggest posting this as a bug to the OfficeJS repo at GitHub.
Note, you can post or vote for an existing feature request on Tech Community where they are considered when the Office dev team goes through the planning process.
- Verify Microsoft Access token on my ASP.NET Core Web API
- How to set Azure MSAL SSO for my Nextjs14 app using Approuter and next-auth
- StackOverflow with Keycloak as login provider returns empty email address
- IdentityServer4 and SSO
- Spring Boot + Security + MVC + LDAP AD + SSO
- Issue with Windows Authentication Type on IIS with Multiple Host Bindings
- Generate IDP Certificate in Azure AD for SSO
- Disqus SSO, "Your API key is not valid on this domain"
- Sign-in With Apple: Possibility To Create Duplicate Account Issue
- AADSTS9002325: Proof Key for Code Exchange is required for cross-origin authorization code redemption
- MS Graph InteractiveBrowserCredential , Is a Client ID registered in Azure Portal really necessary?
- Logout from next-auth with keycloak provider not works
- How to validate access token from AzureAD in python?
- Outlook SSO NAA in pure JS without node.js
- How to create SSO from Liferay to another portal / service?
- How to add ForceAuthn flag on AWS cognito
- Download file from TeamCity with SSO using bash
- Which is the best sample/approach to start openiddict server to provide logins to wordpress?
- No Sustainsys.Saml2 for MVC 3? Are there any alternatives?
- Which lib to create an Identity provider to connect to service provider
- The page you are looking for cannot be displayed because an invalid method (HTTP verb) is being used
- Best way to implement Single-Sign-On with all major providers?
- Azure AD token for accessing Graph token
- Integration of SSO using MSAL in Angular project gets 401 returned error after login
- Simple way to put AWS Lambda app behind SAML authentication
- Why wouldn't the IdP initiate contact with the SP in a SAML 2.0 SSO integration?
- Log out from SSO kerberos
- Getting TypeError: client_secret_basic client authentication method requires a client_secret
- SSO not working in iOS when using AWS Cognito and Azure AD
- Azure b2c still authenticated after hitting logout