We use Azure AD (Entra ID) as a custom auth provider for our solution and are having issues getting users signed in if they are already signed in to some Microsoft account other than the one with permissions in our solution.
Lets say we have given the user access through the user user@ourcompany.com, but the user is already signed in to another Microsoft account user@someothercompany.com. When the user clicks the sso button on our login page in Appfarm, they are automatically sent to the error page: “Unable to find account in Appfarm and autocreate account is not enabled”, without getting asked which account to sign in to.
The workaround would be to ask the user to sign in to the correct account on https://account.microsoft.com/account or some other sso enabled solution first, so that they are then presented with the option to pick the correct account in the Appfarm login flow.
However, it would relieve us of much user support if we could simply let the users pick an account directly in the sso flow from Appfarm. This should be possible by including “&prompt=select_account” in the request sent from Appfarm to Microsoft based on this documentation: learn.microsoft.com/en-us/entra/identity-platform/v2-oauth2-auth-code-flow#request-an-authorization-code
So in short, is it possible to add a check-box to the “Custom Auth Providers” page in Appfarm, which lets your users always select an account in the sso flow?