.Net MAUI WebAuthenticator CallbackUrl for social logins
I'm following this guide to setup authenticating with social logins using MSAL and Web Authenticator. The example call looks like this:
WebAuthenticatorResult authResult = await WebAuthenticator.Default.AuthenticateAsync(
new Uri("https://example.com/mobileauth/Microsoft"),
new Uri("myapp://"));
But what should the second URI parameter be? In the guide it says:
The URI the flow is expected to ultimately call back to, that is registered to your app.
So how do I register a URI like that to my app?? I've tried following this guide and have 'registered' my app in azure active directory but facebook/google etc won't accept urls of the form "myapp://" as valid redirect URIs... What am I missing?
Update
So the first half of the flow is working but I keep getting errors from the OAuth providers (the green highlight in the diagram isn't working).
This from Google:
And this from Facebook:
But I've added all these valid callback URLs:
Finally got to the bottom of it thanks to this old Xamarin issue: https://github.com/xamarin/Essentials/issues/1224#issuecomment-618192336
You have to set the "CallbackPath" property in the API config like so:
.AddGoogle(g => {
g.ClientId = "{Client ID}";
g.ClientSecret = "{Client Secret}";
g.CallbackPath = "/mobileauth"; //mobileauth is api controller
g.SaveTokens = true; })
And then tell the provider of that redirect e.g. adding "https://{API-URL}/mobileauth" in google console.
- Azure tableclient in console app using interactive authentication
- Access Token Issuer from Azure AD is sts.windows.net Instead Of login.microsoftonline.com
- Entra ID - Adding actor claim to the token via client credential flow
- Error OrganizationFromTenantGuidNotFound and 401 Unauthorized when Sending Email via Microsoft Graph API in React App
- How to access an API with an Azure identity provider from a Python notebook?
- Request failed with status 400 - MSAL-NODE while calling networkClient.sendPostRequestAsync(tokenEndpoint, options)
- How to eliminate the verbose pattern of canActivate/canDeactivate in Angular?
- generating common access token for MS graph api and custom api
- Calling an ASP.NET Core Web API integrated to EntraId app from another .NET Core console app integrated to EntraId app fails
- How to generate a delegated token with username and password in Azure AD using PowerShell?
- Unable to call Graph API using an on-behalf-of flow from ASP.NET Core Web API
- Azure Entra ID - Requiring Admin Consent - How to avoid this
- Creating authentication flow in .NET MAUI app for Azure AD B2C
- How to add Mail.Send permission when creating application with secret?
- Sharepoint api not exposed when using graphApi token MSAL
- AzureAd .NET - React running on same domain
- On Android, you have to specify the current Activity from which the browser pop-up will be displayed using the WithParentActivityOrWindow method
- MSAL.NET OBO refresh token problems
- React Native MSAL - SSO does not work from Native to Web - iOS
- MSAL AcquireTokenInteractive redirects browser to unavaible localhost
- How to know if a given user is already logged in with MSAL?
- Mocking authentication when testing MSAL React Apps
- How to use "Modern auth" with MSAL.NET and personal Microsoft accounts
- How to redirect a user to login page if token has expired using "React AZURE MSAL SSO"?
- Unable to Authenticate to DevOps API with Angual MSAL
- how to get v2 type token using msal python
- MSAL (Angular) popup login
- How to debug Bearer error="invalid_token"
- MSAL Android Xamarin Stuck Dialog - "Are you trying to sign in to {your_appname}"?
- Microsoft Identity Web: Change Redirect Uri