Lightrun Answers was designed to reduce the constant googling that comes with debugging 3rd party libraries. It collects links to all the places you might be looking at while hunting down a tough bug.
And, if you’re still stuck at the end, we’re happy to hop on a call to see how we can help out.
AcquireTokenInteractive for AD B2C on .NET Core 3.0 WPF desktop client does not work
See original GitHub issueWhich Version of MSAL are you using ? MSAL 4.0.0
Platform .NET Core 3.0
What authentication flow has the issue?
- Desktop / Mobile
- Interactive
- Integrated Windows Auth
- Username Password
- Device code flow (browserless)
- Web App
- Authorization code
- OBO
- Web API
- OBO
Is this a new or existing app? This is a new app
Repro
// Creation of PublicClientApp
// Call to WithRedirectUri is commented out because that redirect URI cannot
// be added during app registration.
public static IPublicClientApplication PublicClientApp { get; } = PublicClientApplicationBuilder.
Create(ClientId).
WithB2CAuthority(Authority).
// WithRedirectUri("http://localhost").
Build();
// ...
// Sign-in method logic
await App.PublicClientApp.AcquireTokenInteractive(App.ApiScopes).
WithB2CAuthority(App.Authority).
WithPrompt(Prompt.SelectAccount).
ExecuteAsync();
Expected behavior Call to AcquireTokenInteractive should open default browser and prompt user for login credentials. After login should return focus to app.
Actual behavior AcquireTokenInteractive is throwing an exception: “Only loopback redirect uri is supported, but urn:ietf:wg:oauth:2.0:oob was found. Configure http://localhost or http://localhost:port both during app registration and when you create the PublicClientApplication object. See https://aka.ms/msal-net-os-browser for details”.
Additional context/ Logs / Screenshots Here is the Azure portal AD B2C tenant app registration screen for native client: link
On the AD B2C app registration I cannot add custom URI “http://localhost”.
So how can a .NET Core Desktop WPF app use interactive login with B2C? Are there any other options and examples?
Issue Analytics
- State:
- Created 4 years ago
- Reactions:2
- Comments:16 (8 by maintainers)
Top Results From Across the Web
Top Related Medium Post
Top Related StackOverflow Question
Troubleshoot Live Code
Top Related Reddit Thread
Top Related Hackernoon Post
Top Related Tweet
Top Related Dev.to Post
Top Related Hashnode Post
Just an update on this - B2C have now implemented support for http://localhost:<port> so AcquireTokenInteractive will work for the Identity Providers that allow this kind of redirect uri. They will support
http://localhost(no port) soon.@cswierczynski-diam Before supporting embedded browsers in the netcore target we have to make some structural changes to the library ensuring we can ship a netcore target which doesn’t have a dependency on WPF or Winforms. This work is currently in progress.
We have so far down prioritized providing the solution in the extensibility library as we want to make this feature part of the core library. The best option so far is to use the CustomWebUI approach as outlined by @bgavrilMS .
@jennyf19 any updates on the B2C timeline?
CC: @jmprieur @jennyf19