Action based message extension with SSO

[jamzi]

I'm implementing an action-based message extension (three dots on the message in a chat).

How can I add SSO in order to get the user token in the TeamsActivityHandler methods?

The example for search-based message extension shows how to do it (handleTeamsMessagingExtensionQuery and handleMessageExtensionQueryWithSSO), but there are no examples on how to do it with action based methods (handleTeamsMessagingExtensionSubmitAction).

Thanks!

[wenytang-ms]

Hi @jamzi thanks for you feedback.
The SSO work flow has limitation on Teams Message Extension. For link unfurling and Search Commands, it follows the silent auth work flow, you may use handleMessageExtensionQueryWithSSO and handleMessageExtensionQueryWithSSO to do SSO. But for action based message extension, the silent auth workflow is not natively supported.
You may reference this wiki for more detail.

[jamzi]

@wenytang-ms Thanks for a quick answer. Is there a way to workaround this limitation?

I was thinking something like this, either:

a) Use some kind of methods from 'botbuilder-js' to achieve basically what handleMessageExtensionQueryWithSSO is doing?
b) Is there an example on how to create a token from the available data and send it to 3rd party BE?

[wenytang-ms]

@jamzi Sorry for the late reply.
since the SSO only work for query or link unfurling, if you want to do auth flow in action based, you may return a composeExtension object directly as auth flow, you may refer the following snippites.

composeExtension: {
    type: "auth",
    suggestedActions: {
      actions: [
        {
          type: "openUrl",
          value: signInLink,
          title: "Message Extension OAuth",
        },
     ],
  },
},