Use this to configure the auth options in the Configuration object
You can configure a specific authority, defaults to " " or "https://login.microsoftonline.com/common"
A string containing the .well-known/openid-configuration endpoint response
Enum that represents the Azure Cloud to use.
Array of capabilities which will be added to the claims.access_token.xms_cc request property on every network request.
Client ID of your app registered with our Application registration portal : https://portal.azure.com/#blade/Microsoft_AAD_IAM/ActiveDirectoryMenuBlade/RegisteredAppsPreview in Microsoft Identity Platform
A string containing the cloud discovery response. Used in AAD scenarios.
An array of URIs that are known to be valid. Used in B2C scenarios.
Boolean indicating whether to navigate to the original request URL after the auth server navigates to the redirect URL.
The redirect URI where the window navigates after a successful logout.
Enum that represents the protocol that msal follows. Used for configuring proper endpoints.
The redirect URI where authentication responses can be received by your application. It must exactly match one of the redirect URIs registered in the Azure portal.
Use this to configure the below cache configuration options:
Used to specify the cacheLocation user wants to set. Valid values are "localStorage" and "sessionStorage"
If set, MSAL sets the "Secure" flag on cookies so they can only be sent over HTTPS. By default this flag is set to false.
If set, MSAL stores the auth request state required for validation of the auth flows in the browser cookies. By default this flag is set to false.
This object allows you to configure important elements of MSAL functionality and is passed into the constructor of PublicClientApplication
This is where you configure auth elements like clientID, authority used for authenticating against the Microsoft Identity Platform
This is where you configure cache location and whether to store cache in cookies
This is where you can configure the network client, logger, token renewal offset
This is where you can configure telemetry data and options
EndSessionPopupRequest
EndSessionRequest
Additional information passed to the navigateInternal and navigateExternal functions
The Id of the API that initiated navigation
When set to true the url should not be added to the browser history
Suggested timeout (ms) based on the configuration provided to PublicClientApplication
PopupRequest: Request object passed by user to retrieve a Code from the server (first leg of authorization code grant flow) with a popup window.
login: will force the user to enter their credentials on that request, negating single-sign on
none: will ensure that the user isn't presented with any interactive prompt. if request can't be completed via single-sign on, the endpoint will return an interaction_required error
consent: will the trigger the OAuth consent dialog after the user signs in, asking the user to grant permissions to the app
select_account: will interrupt single sign-=on providing account selection experience listing all the accounts in session or any remembered accounts or an option to choose to use a different account
create: will direct the user to the account creation experience instead of the log in experience
RedirectRequest: Request object passed by user to retrieve a Code from the server (first leg of authorization code grant flow) with a full page redirect.
login: will force the user to enter their credentials on that request, negating single-sign on
none: will ensure that the user isn't presented with any interactive prompt. if request can't be completed via single-sign on, the endpoint will return an interaction_required error
consent: will the trigger the OAuth consent dialog after the user signs in, asking the user to grant permissions to the app
select_account: will interrupt single sign-=on providing account selection experience listing all the accounts in session or any remembered accounts or an option to choose to use a different account
create: will direct the user to the account creation experience instead of the log in experience
SilentRequest: Request object passed by user to retrieve tokens from the cache, renew an expired token with a refresh token, or retrieve a code (first leg of authorization code grant flow) in a hidden iframe.
Request object passed by user to ssoSilent to retrieve a Code from the server (first leg of authorization code grant flow)
login: will force the user to enter their credentials on that request, negating single-sign on
none: will ensure that the user isn't presented with any interactive prompt. if request can't be completed via single-sign on, the endpoint will return an interaction_required error
consent: will trigger the OAuth consent dialog after the user signs in, asking the user to grant permissions to the app
select_account: will interrupt single sign-=on providing account selection experience listing all the accounts in session or any remembered accounts or an option to choose to use a different account
create: will direct the user to the account creation experience instead of the log in experience
BrowserAuthErrorMessage class containing string constants used by error codes and messages.
BrowserAuthErrorMessage class containing string constants used by error codes and messages.
Generated using TypeDoc
This type is deprecated and will be removed on the next major version update