Fixes for onload issues in IE, adding postlogout to app json

Author: Prithvi Kanherkar

AppCreationScripts/apps.json

@@ -9,6 +9,7 @@
       "x-ms-id": "JavaScriptSpa",
       "x-ms-name": "active-directory-javascript-graphapi-v2",
       "x-ms-version": "2.0",
+      "logoutUrl": "http://localhost:30662/",
       "replyUrlsWithType": [
         {
           "url": "http://localhost:30662/",

JavaScriptSPA/index.html

@@ -2,17 +2,25 @@
 <html>
 <head>
     <title>Quickstart for MSAL JS</title>
-	<script src="https://cdnjs.cloudflare.com/ajax/libs/bluebird/3.3.4/bluebird.min.js"></script>
+    <script src="https://cdnjs.cloudflare.com/ajax/libs/bluebird/3.3.4/bluebird.min.js"></script>
     <script src="https://secure.aadcdn.microsoftonline-p.com/lib/0.2.3/js/msal.js"></script>
     <script src="https://code.jquery.com/jquery-3.2.1.min.js"></script>
 </head>
 
 <body>
-    <h2>Welcome to MSAL.js Quickstart</h2><br/>
-    <h4 id="WelcomeMessage"></h4>
-    <button id="SignIn" onclick="signIn()">Sign In</button><br/><br/>
-	<pre id="json"></pre>
+<h4 id="WelcomeMessage"></h4>
+<button id="SignIn" onclick="signIn()">Sign In</button>
+<br/><br/>
+<pre id="json"></pre>
 
+<<<<<<< HEAD
+<script>
+    var applicationConfig = {
+        clientID: '0813e1d1-ad72-46a9-8665-399bba48c201', //This is your client ID
+        graphScopes: ["user.read"],
+        graphEndpoint: "https://graph.microsoft.com/v1.0/me"
+    };
+=======
     <script>
 		// Browser check variables
 		var ua = window.navigator.userAgent;
@@ -23,118 +31,124 @@ <h4 id="WelcomeMessage"></h4>
 		var isEdge = msedge > 0;
 
         var applicationConfig = {
-            clientID: "0813e1d1-ad72-46a9-8665-399bba48c201", //This is your client ID
+            clientID: "Enter_the_Application_Id_here", //This is your client ID
             graphScopes: ["user.read"],
             graphEndpoint: "https://graph.microsoft.com/v1.0/me"
         };
+>>>>>>> 1fbe10f469b303ec16eccd34c22172576ab7759f
 
-        //Pass null for default authority (https://login.microsoftonline.com/common) and tokenReceivedCallback if using popup apis
-        var myMSALObj = new Msal.UserAgentApplication(applicationConfig.clientID, null, null, {storeAuthStateInCookie:true, cacheLocation:"localStorage"});
-				
-        function signIn() {
-			myMSALObj.loginPopup(applicationConfig.graphScopes).then(function (idToken) {
-                //Login Success
-                showWelcomeMessage();
-                acquireTokenAndCallMSGraph();
-            }, function (error) {
-                console.log(error);
-            });
-        }
-		
-        function signOut() {
-            myMSALObj.logout();
-        }
+    //Pass null for default authority (https://login.microsoftonline.com/common)
+    var myMSALObj = new Msal.UserAgentApplication(applicationConfig.clientID, null, acquireTokenRedirectCallBack,
+        {storeAuthStateInCookie: true, cacheLocation: "localStorage"});
 
-        function acquireTokenAndCallMSGraph() {
-			//Call acquireTokenSilent (iframe) to obtain a token for Microsoft Graph
-            myMSALObj.acquireTokenSilent(applicationConfig.graphScopes).then(function (accessToken) {
-                callMSGraph(applicationConfig.graphEndpoint, accessToken, graphAPICallback);
-            }, function (error) {
-				// Call acquireTokenPopup (popup window) in case of acquireToken Failure
-				if (error.indexOf("consent_required") !== -1 || error.indexOf("interaction_required") !== -1) {
-					myMSALObj.acquireTokenPopup(applicationConfig.graphScopes).then(function (accessToken) {
-						callMSGraph(applicationConfig.graphEndpoint, accessToken, graphAPICallback);
-					}, function (error) {
-					});
-				}
-            });
-        }
+    function signIn() {
+        myMSALObj.loginPopup(applicationConfig.graphScopes).then(function (idToken) {
+            //Login Success
+            showWelcomeMessage();
+            acquireTokenPopupAndCallMSGraph();
+        }, function (error) {
+            console.log(error);
+        });
+    }
+
+    function signOut() {
+        myMSALObj.logout();
+    }
 
-        function callMSGraph(theUrl, accessToken, callback) {
-            var xmlHttp = new XMLHttpRequest();
-            xmlHttp.onreadystatechange = function () {
-                if (this.readyState == 4 && this.status == 200)
-                    callback(JSON.parse(this.responseText));
+   function acquireTokenPopupAndCallMSGraph() {
+        //Call acquireTokenSilent (iframe) to obtain a token for Microsoft Graph
+        myMSALObj.acquireTokenSilent(applicationConfig.graphScopes).then(function (accessToken) {
+            callMSGraph(applicationConfig.graphEndpoint, accessToken, graphAPICallback);
+        }, function (error) {
+            console.log(error);
+            // Call acquireTokenPopup (popup window) in case of acquireTokenSilent failure due to consent or interaction required ONLY
+            if (error.indexOf("consent_required") !== -1 || error.indexOf("interaction_required") !== -1 || error.indexOf("login_required") !== -1) {
+                myMSALObj.acquireTokenPopup(applicationConfig.graphScopes).then(function (accessToken) {
+                    callMSGraph(applicationConfig.graphEndpoint, accessToken, graphAPICallback);
+                }, function (error) {
+                    console.log(error);
+                });
             }
-            xmlHttp.open("GET", theUrl, true); // true for asynchronous
-            xmlHttp.setRequestHeader('Authorization', 'Bearer ' + accessToken);
-            xmlHttp.send();
-        }
+        });
+    }
 
-        function graphAPICallback(data) {
-            //Display user data on DOM
-            var divWelcome = document.getElementById('WelcomeMessage');
-            document.getElementById("json").innerHTML = JSON.stringify(data, null, 2);
+    function callMSGraph(theUrl, accessToken, callback) {
+        var xmlHttp = new XMLHttpRequest();
+        xmlHttp.onreadystatechange = function () {
+            if (this.readyState == 4 && this.status == 200)
+                callback(JSON.parse(this.responseText));
         }
+        xmlHttp.open("GET", theUrl, true); // true for asynchronous
+        xmlHttp.setRequestHeader('Authorization', 'Bearer ' + accessToken);
+        xmlHttp.send();
+    }
+
+    function graphAPICallback(data) {
+        //Display user data on DOM
+        var divWelcome = document.getElementById('WelcomeMessage');
+        divWelcome.innerHTML += " to Microsoft Graph API!!";
+        document.getElementById("json").innerHTML = JSON.stringify(data, null, 2); 
+    }
+
+    function showWelcomeMessage() {
+        var divWelcome = document.getElementById('WelcomeMessage');
+        divWelcome.innerHTML += 'Welcome ' + myMSALObj.getUser().name;
+        var loginbutton = document.getElementById('SignIn');
+        loginbutton.innerHTML = 'Sign Out';
+        loginbutton.setAttribute('onclick', 'signOut();');
+    }
 
-        function showWelcomeMessage() {
-            var divWelcome = document.getElementById('WelcomeMessage');
-            divWelcome.innerHTML += 'Welcome ' + myMSALObj.getUser().name + " to Microsoft Graph API!!";
-            var loginbutton = document.getElementById('SignIn');
-            loginbutton.innerHTML = 'Sign Out';
-            loginbutton.setAttribute('onclick', 'signOut();');
+    // This function can be removed if you do not need to support IE
+    function acquireTokenRedirectAndCallMSGraph() {
+        //Call acquireTokenSilent (iframe) to obtain a token for Microsoft Graph
+        myMSALObj.acquireTokenSilent(applicationConfig.graphScopes).then(function (accessToken) {
+          callMSGraph(applicationConfig.graphEndpoint, accessToken, graphAPICallback);
+        }, function (error) {
+            console.log(error);
+            //Call acquireTokenRedirect in case of acquireToken Failure
+            if (error.indexOf("consent_required") !== -1 || error.indexOf("interaction_required") !== -1 || error.indexOf("login_required") !== -1) {
+                myMSALObj.acquireTokenRedirect(applicationConfig.graphScopes);
+            }
+        }); 
+    }
+
+    function acquireTokenRedirectCallBack(errorDesc, token, error, tokenType)
+    {
+     if(tokenType === "access_token")
+     {
+         callMSGraph(applicationConfig.graphEndpoint, accessToken, graphAPICallback);
+     } else {
+            console.log("token type is:"+tokenType);
+     } 
+
+    }
+
+    // Browser check variables
+    var ua = window.navigator.userAgent;
+    var msie = ua.indexOf('MSIE ');
+    var msie11 = ua.indexOf('Trident/');
+    var msedge = ua.indexOf('Edge/');
+    var isIE = msie > 0 || msie11 > 0;
+    var isEdge = msedge > 0;
+
+    //If you support IE, our recommendation is that you sign-in using Redirect APIs
+    //If you as a developer are testing using Edge InPrivate mode, please add "isEdge" to the if check 
+    if (!isIE) {
+        if (myMSALObj.getUser()) {// avoid duplicate code execution on page load in case of iframe and popup window.
+            showWelcomeMessage();
+            acquireTokenPopupAndCallMSGraph();
         }
-		
-		/** 
-		if (myMSALObj.getUser() && !myMSALObj.isCallback(window.location.hash)) {// avoid duplicate code execution on page load in case of iframe and popup window.
-			showWelcomeMessage();
-			acquireTokenAndCallMSGraph();
-		}
-		**/
-		
-		// Uncomment the above code and delete the below code if you are not using browser detection
-		
-		if(isIE) {
-			document.getElementById("SignIn").onclick = function() {
-				myMSALObj.loginRedirect(applicationConfig.graphScopes);
-			};
-			if (myMSALObj.getUser() && !myMSALObj.isCallback(window.location.hash)) {// avoid duplicate code execution on page load in case of iframe and popup window.
-				showWelcomeMessage();
-				acquireTokenRedirectAndCallMSGraph();
-			}
-		} 
-		// Uncomment this if you are testing in Edge InPrivate, or delete
-		/**
-		else if(isEdge) {
-			document.getElementById("SignIn").onclick = function () { 
-				myMSALObj.loginRedirect(applicationConfig.graphScopes);
-			};
-			if (myMSALObj.getUser() && !myMSALObj.isCallback(window.location.hash)) {// avoid duplicate code execution on page load in case of iframe and popup window.
-				showWelcomeMessage();
-				acquireTokenRedirectAndCallMSGraph();
-			}
-		}
-		**/
-		else {
-			if (myMSALObj.getUser() && !myMSALObj.isCallback(window.location.hash)) {// avoid duplicate code execution on page load in case of iframe and popup window.
-				showWelcomeMessage();
-				acquireTokenAndCallMSGraph();
-			}
-		}
-        
-		// This function can be removed if browser detection isn't needed	
-		function acquireTokenRedirectAndCallMSGraph(myMSALObj) {
-            //Call acquireTokenSilent (iframe) to obtain a token for Microsoft Graph
-            myMSALObj.acquireTokenSilent(applicationConfig.graphScopes).then(function (accessToken) {
-                callMSGraph(applicationConfig.graphEndpoint, accessToken, graphAPICallback);
-            }, function (error) {
-                //Call acquireTokenRedirect in case of acquireToken Failure
-                if (error.indexOf("consent_required") !== -1 || error.indexOf("interaction_required") !== -1) {
-                    myMSALObj.acquireTokenRedirect(applicationConfig.graphScopes);
-                }
-            });
+    }
+    else {
+        document.getElementById("SignIn").onclick = function () {
+            myMSALObj.loginRedirect(applicationConfig.graphScopes);
+        };
+
+        if (myMSALObj.getUser() && !myMSALObj.isCallback(window.location.hash)) {// avoid duplicate code execution on page load in case of iframe and popup window.
+            showWelcomeMessage();
+            acquireTokenRedirectAndCallMSGraph();
         }
-				
-    </script>
+    }
+</script>
 </body>
 </html>

server.js

@@ -9,7 +9,7 @@ var morgan = require('morgan');
 var path = require('path');
 
 // Initialize variables.
-var port = 1530; // process.env.PORT || 30662;
+var port = 30662; // process.env.PORT || 30662;
 
 // Configure morgan module to log all requests.
 app.use(morgan('dev'));