Using MSAL for Python to perform interactive sign in from a local script

Bac Hoang [MSFT]

This blog shows how to use MSAL for Python to perform an interactive sign in to Azure AD from running a local python script. The sample also demonstrates how to enable MSAL logging along with how to capture Python SSL web traffic using Fiddler Classic App Registration: You will need to have an Azure AD App Registration with “http://localhost” reply URL configured in the ‘Mobile and desktop applications’ platform The…

Read More

Change token lifetimes using the Microsoft Graph PowerShell SDK

Ray Held [MSFT]

You can use the Microsoft Graph PowerShell SDK to create a new token lifetime policy, then assign it to a service principal. When obtaining access tokens for that service principal, you will have the new token lifetime in that token. Our documentation Create tokenLifetimePolicy – Microsoft Graph v1.0 | Microsoft Learn does not actually give an example of how the JSON should be structured to make this work. This blog…

Read More

Add Azure AD roles claim support in WebAssembly Authentication

Bill Fiddes [MSFT]

You are developing a WebAssembly authentication app and trying to implement Roles based access control. You are getting a similar error like… The WebAssembly Authentication stack appears to cast the roles claim into a single string. We need this User Factory to modify its behavior so that each role has its own unique value. Create the Custom User Factory First, create a custom User Factory (CustomUserFactory.cs)… Add the roles mapping…

Read More