Fix skip sso for apikey login (#1308)

* Improve mixing SSO login error * Skip SSO requirement for API key logins * Bypass MFA for apikey logins
2025-12-17 00:33:23 +00:00 · 2021-05-10 11:13:37 -05:00
parent 70ab5b25a1
commit 354ff6e2cb
2 changed files with 17 additions and 4 deletions
--- a/src/Core/IdentityServer/CustomTokenRequestValidator.cs
+++ b/src/Core/IdentityServer/CustomTokenRequestValidator.cs
@@ -87,7 +87,13 @@ namespace Bit.Core.IdentityServer
        }

        protected override void SetSsoResult(CustomTokenRequestValidationContext context, 
-            Dictionary<string, object> customResponse) => throw new System.NotImplementedException();
+            Dictionary<string, object> customResponse) 
+        {
+            context.Result.Error = "invalid_grant";
+            context.Result.ErrorDescription = "Single Sign on required.";
+            context.Result.IsError = true;
+            context.Result.CustomResponse = customResponse;
+        }

        protected override void SetErrorResult(CustomTokenRequestValidationContext context,
            Dictionary<string, object> customResponse)