This project demonstrates how to implement Microsoft Authentication Library (MSAL) for Java in a servlet-based web application. It provides a complete solution for authentication and authorization using Azure Active Directory.
- Authentication with Microsoft Azure AD using MSAL4J
- Session management and token storage
- Token expiry detection and automatic refresh
- Secure area with authorization filter
- JSP-based user interface
- Complete logout functionality
-
Java Package Structure:
com.auth.msal.config: Configuration classescom.auth.msal.filter: Servlet filters for authenticationcom.auth.msal.model: Data modelscom.auth.msal.service: Authentication servicescom.auth.msal.servlet: Servlet controllerscom.auth.msal.util: Utility classes
-
Web Resources:
- JSP pages for UI
- Layout tag files
- Error handling pages
Before running the application, you need to register it in the Azure Portal and update the msal.properties file with your application configuration:
- Register an application in the Azure Portal
- Get the Client ID and create a Client Secret
- Configure the Redirect URI
- Update the
msal.propertiesfile with your values
- Configure your MSAL properties in
src/main/resources/msal.properties - Build the project using Maven:
mvn clean package - Deploy the WAR file to your servlet container (Tomcat, Jetty, etc.) or run it using the embedded Jetty:
mvn jetty:run - Access the application at: http://localhost:8080/msal4j-auth/
- Session Management: Sessions are maintained on the server-side, not in the JSP
- Token Refresh: Automatic refresh of access tokens using refresh tokens
- Security: CSRF protection with state parameter and nonce for replay protection
- JDK Compatibility: Built for JDK 1.8
- Java 8 or higher
- Maven 3.6 or higher
- A servlet container (Tomcat, Jetty, etc.)
- An Azure Active Directory tenant
This project is licensed under the MIT License - see the LICENSE file for details.