Auth Code Flow implementation #238
Comments
|
Yes, absolutely. The goal was to do this in July, and the architecture discussions have already begun. The primary challenge is that MSAL has a new package which contains the new auth flow for browser environments. In addition to utilizing the new package, the library can have better support for hooks using context API, which should resolve a number of bugs that currently exist. |
|
Is the timeline for this integration still looking like July? I'm trying to provide my team with a timeline/direction for implementing Azure AD authentication within our applications and would very much like to use this library. |
|
"July 6th, 2020 (Tentative)" for @azure/msal-browser v2.0.0, according to https://github.com/AzureAD/microsoft-authentication-library-for-js/tree/dev/lib/msal-browser#releases 🤞 |
Any updates on this timeline @AndrewCraswell ? |
|
^^ I've mentioned this issue in some of the other issues that seem to be caused by the use of implicit flow. I bet there are more! |
|
Any updates? Since Chrome disabled 3rd party cookies by default a few weeks back this is quite a tough situation for most of the users, we are in a lot of trouble now :( Please let us know if it makes sense to wait for the update a few more days (and show them ugly popups to turn on 3rd party cookies), or try to re-write everything using the msal-browser library directly, even though it might take a lot of time to rewrite our whole app to use it. Please help @AndrewCraswell :) |
|
Looks like Safari and other browsers are now blocking 3rd party cookies, making our product now unusable as majority cannot login. Any updates on this? |
|
I tried replacing this library with code from a couple of examples from the MSAL repo but didn't get very far. Then I found this Graph API tutorial which was a much better fit for our existing app, got it working with popups and finally with redirection. Not a 5 minute job by any means, but maybe that's useful to others. I would have loved to make a PR for |
|
To anyone interested:
|
Can you share your solution, whiles we wait for an update for this? |
|
It is not a drop in replacement and is quite specific to our application,
that’s why I didn’t share it. If you can’t wait then I would look at the
sample and try to apply it to your own application.
On Fri, 25 Sep 2020 at 10:37, adomrockie ***@***.***> wrote:
I tried replacing this library with code from a couple of examples from
the MSAL repo
<https://github.com/AzureAD/microsoft-authentication-library-for-js/tree/dev/samples>
but didn't get very far. Then I found this Graph API tutorial
<https://docs.microsoft.com/en-us/graph/tutorials/react> which was a much
better fit for our existing app, got it working with popups and finally
with redirection. Not a 5 minute job by any means, but maybe that's useful
to others.
I would have loved to make a PR for react-aad-msal but had a look and
didn't know where to start, plus there was talk of bigger architectural
changes anyway.
Can you share your solution, whiles we wait for an update for this?
—
You are receiving this because you commented.
Reply to this email directly, view it on GitHub
<#238 (comment)>,
or unsubscribe
<https://github.com/notifications/unsubscribe-auth/AAATWSQALFPW7YRUQ4SWBI3SHRQGNANCNFSM4NLSTO7A>
.
--
--
Graeme Foster
|
|
For anybody struggling with this, it took me 2 days but finally got it to work.
This library |
|
Hey folks, Thanks for everyone's patience, and I apologize for the late replies. Since July a small group has been working to redesign the In July members of the MSAL team reached out to let us know they were planning to build out an official React library soon, and wanted to take the opportunity of the hackathon to work together and develop an architecture. During this time we were able to test out In lieu of the changes to the underlying In the interim before the official |
|
Hi @AndrewCraswell , thanks for the update. For now, what I've been doing is using the Typescript edition of msal-browser 2.0 implementation in my app and going from there - it's not an easy task if I my add so any help I could give you guys, let me know. EDIT: Also this example with React and Redux is pretty nice. |
|
@AndrewCraswell any update on your efforts to "build a basic update to react-aad-msal that gets people shifted from msal to @azure/msal-browser"? |
My understanding is that this project is using Implicit Grant (link), but microsoft has just released support of Auth Code For SPAs.
I was looking at the official roadmap for MSAL.js and they mentioned a TBD item of building some kind of react integration or components for this but there is no date on the horizon.
For the time being this library is by far the best option for integrating Azure AD Auth system with a React application.
Can a maintainer/contributer comment on if there is some plan to implement Auth Code Flow that mentioned above in this project?
It seems that many organizations are starting to phase out use of Implicit Grant oauth flows due to security concerns.
The text was updated successfully, but these errors were encountered: