This article applies to SaaS version of Identity Panel only.
To initiate interactive authentication access /account/login. This will initiate a 302 redirect to the multi-tenant Azure OIDC federation endpoint (https://login.windows.net/common) with standard OIDC authentication parameters (populated by .NET Core authentication middleware).
After authenticating you will be directed back to /signin-oidc where the application will authenticate and set you login session cookies, then finally redirect back to home.
All subsequent requests must use send the .AspNetCore.Cookies to maintain authentication context.
Browsing to /account/logoff will clear the session cookies and end the session. Note that this logs the user out of Identity Panel, but does NOT affect their Azure login session.