[Blazor][Wasm] Authentication improvements #19966
Description
This is just a tracking issue to collect all auth related improvements/minor fixes so that they can be tackled together.
All the issues below can be tackled/addressed together:
- Blazor-wasm (authentication): add OidcProviderOptions.MetadataAddress property #19877
- [Blazor-WASM 3.2 Preview 2] Msal: Can not set CacheLocation in configuration. #19958
- Provide a way to set loginHint in Blazor with AAD auth #19925
- Blazor WebAssembly: RedirectToLogin in template causes infinite redirect loop #19855
- Blazor WebAssembly: AddRemoteAuthentication(options) doesn't work #19854
- Blazor WASM Authentication - TryGetToken is null - Version 3.2.0-preview2.20160.5 #19998
In addition to those, we want to do a couple other small things based on feedback:
- Provide an abstraction to enrich the user claims:
- This is doable today overriding the RemoteAuthenticatorService, but its not easy to do. A separate abstraction simplifies this a lot.
- Provide the ability to choose a return URL based on the authenticated user. This is useful in a couple of important scenarios:
- A logged in user just registered and we want to be able to collect more profile data before we redirect him to the original resource he was trying to access.
- We want to limit what users can use an app by calling an API on a third party server. This allows developers to redirect users to a separate page, like Forbidden.