URL Parameter : token

GuillaumeArnaud · ‎04-28-2021

Hi

I want to use an app generate by ExperienceBuilder in an iframe where user is auth. I try to add a "token" URL Parameter to get an automatic login to a non public app (with non public webmap). With a webappbuilder app I write <appurl>?token=<token>. This syntax doesn't work with experience builder.

Is there a mean to do that ?

thanks

Guillaume

TonghuiMing · ‎04-15-2024

The sso REST endpoint supports it, so this could work:

https://www.arcgis.com/sharing/rest/oauth2/authorize/sso?redirect_uri=https://experience.arcgis.com/experience/{appID}&client_id=experienceBuilder&canHandleCrossOrgSignin=true&token=xxx

AlessioDiLorenzo · ‎04-15-2024

Is it valid for operations dashboard also?

BethLott · ‎08-12-2024

Can you confirm that the SSO REST endpoint with the experience.arcgis.com URL works, vs "could work"? We have a similar requirement for an application that cannot be public.

TomPattison1 · ‎09-24-2024

Anyone get this working? Really need a solution here.

TomPattison1 · ‎09-24-2024

Doesn't this still require credentials login for ArcGIS Online? Need way to handle credentials behine the scene like we could with Web Application Builder. What is Esri's response to this?

lah

Also desperate for a solution to this - this is a major limitation. ESRI support has also not been able to provide any suggestions, outside of making the app and data public (obviously not a viable option).

I've also looked into Dashboards and Instant Apps - neither of them are able to do this either. I'm really trying, but it's impossible to move away from WAB at this point.