I am not a programmer so unsure on how this can be done. If you could place some snapshots please?

abeermuh

You either messed something up or URL rewriting is not enabled on your webserver.

Cheers.

How and where I need to enable URL rewriting on webserver? I am running apache2 with php8.0

Furthermore, I unphar the plugin , modified and made it .phar again instead of doing further changes on Database. So trying to work with .phar file after modifying it to "Prompt=login"

abeermuh

You can google as it depends on your server distribution.

Cheers.

ok, I will do.

Also, would that work this way??
"Furthermore, I unphar the plugin , modified and made it .phar again instead of doing further changes on Database. So trying to work with .phar file after modifying it to "Prompt=login""

Hey Kevin, thanks for your help. The issue has been resolved now for us after making the modification (Prompt = Login) in Plugin and enabling the URL rewrite module on server.

Is there any update on this plugin or plans to change to 'prompt=login' in future? We're also unable to use it as our users can't consent themselves and admin consent is needed. This is a common setup in environments for security. Even when admin consent is granted, it won't work because prompt=consent forces the prompt each time, which is against Microsoft's best practice.

The developer has configured the application to require a consent prompt every time it is used (note: this behavior isn't best practice).

Following Microsoft's recommendations and best practices, many organizations have disabled or limited users' permission to grant consent to apps. If an application forces users to grant consent every time they sign in, most users will be blocked from using these applications even if an administrator grants tenant-wide admin consent. If you encounter an application which is requiring user consent even after admin consent has been granted, check with the app publisher to see if they have a setting or option to stop forcing user consent on every sign in.
https://learn.microsoft.com/en-us/azure/active-directory/manage-apps/application-sign-in-unexpected-user-consent-prompt

We've never had to rebuild a plugin before and it seems a bit heavy handed, especially for some of our staff who don't have much php or command line experience. It also means it's another thing to be aware of whenever upgrading osTicket/plugins as any new versions will break existing setups again.

Would it be possible to update the official plugin to use prompt=login as it would still accomplish the goal of confirming the email address?

xomxom

I do not understand your question. Basic Authentication and OAuth2 is completely different and separate.

Cheers.

KevinTheJedi
As you can see in this image, i wanted to configure my email but in the authentication i hvae to choose one of the option, so when i chose basic authentication, it says invalid username or password. SO i am not able to configure the email.

ntozier
as you can see here, i am unable to do basic authentication

xomxom

You can't use basic auth with Gmail nor O365 anymore. With Gmail you can either:

1. Enable 2FA, configure an App Password, and use the email and app password to authenticate.
2. Configure OAuth2.

Cheers.

Bobbed2447 Is there any update on this plugin or plans to change to 'prompt=login' in future?

Does anyone know if there are any plans to change the 'prompt=consent' to 'prompt=login' in future for this plugin to allow secure environments to run this without making modifications to the plugin itself?

Bobbed2447

Already removed with the latest builds.

Cheers.

KevinTheJedi

Oh wow that's amazing! I did check the plugin Github page before I posted but thought it didn't show any new changes. That's awesome, thanks! Will update and try it out.