Update: Microsoft will be moving away from UserVoice sites on a product-by-product basis throughout the 2021 calendar year. We will leverage 1st party solutions for customer feedback. Learn more here.

How can we improve Azure Active Directory?

← Azure Active Directory

Support POST OpenID Connect authentication requests

Supporting POST authentication/authorization requests is not mandatory for clients, but would be a nice addition if I wanted to use idtokenhint without being it captured in server logs in the referer header response.

>Authorization Servers MUST support the use of the HTTP GET and POST methods defined in RFC 2616 [RFC2616] at the Authorization Endpoint. Clients MAY use the HTTP GET or POST methods to send the Authorization Request to the Authorization Server. If using the HTTP GET method, the request parameters are serialized using URI Query String Serialization, per Section 13.1. If using the HTTP POST method, the request parameters are serialized using Form Serialization, per Section 13.2.

http://openid.net/specs/openid-connect-core-1_0.html

1 vote

We're glad you're here

Please sign in to leave feedback
Signed in as (Sign out)
Close
Close

We’ll send you updates on this idea

Rafael shared this idea  ·   ·  Flag idea as inappropriate…  ·  Admin →

0 comments

We're glad you're here

Please sign in to leave feedback
Signed in as (Sign out)
Close
Close
Submitting...
An error occurred while saving the comment

Azure Active Directory: Authentication

Categories

Feedback and Knowledge Base

(thinking…)
Hosted by UserVoice