How can I get my own user attributes (Email, UPN etc.) from Azure AD by using an interactive login?

Question

I am trying to write a C# console app to get my own user attributes (such as businessPhones, displayName, givenName, id, jobTitle, mail, mobilePhone, officeLocation, preferredLanguage, surname, and userPrincipalName) from Azure AD by using an interactive login? Using the standard login Windows that pops up when authenticating to AAD.

I started by doing this but 'Microsoft.IdentityModel.Clients.ActiveDirectory' is deprecated.

using Microsoft.IdentityModel.Clients.ActiveDirectory;
using Microsoft.Graph;
using Newtonsoft.Json;
using System;
using System.Collections.Generic;
using System.Threading.Tasks;

class Program
{
    static async Task Main(string[] args)
    {
        string clientId = "my client ID from app reg";
        string authority = "https://login.microsoftonline.com/your-tenant-id";
        string resource = "https://graph.microsoft.com";

Answer 1

Create an Azure AD application and grant User.Read API permission:

Generate the auth-code by using below endpoint and sign-in with the user account:

https://login.microsoftonline.com/TenantID/oauth2/v2.0/authorize?
&client_id=ClientID
&response_type=code
&redirect_uri=https://replyUrlNotSet
&response_mode=query
&scope=https://graph.microsoft.com/.default
&state=12345

You can make use of below code to get the singed in user details:

using Microsoft.Graph;
using Azure.Identity;

class Program
{
    static async Task Main(string[] args)
    {
        
        var scopes = new[] { "User.Read" };
        var tenantId = "TenantID";
        var clientId = "ClientID";
        var clientSecret = "ClientSecret";
        var authorizationCode = "authcodefromabove";

        var options = new AuthorizationCodeCredentialOptions
        {
            AuthorityHost = AzureAuthorityHosts.AzurePublicCloud,
        };

        var authCodeCredential = new AuthorizationCodeCredential(
            tenantId, clientId, clientSecret, authorizationCode, options);

        var graphClient = new GraphServiceClient(authCodeCredential, scopes);

        try
        {
            // Fetch user details using GET request to Microsoft Graph API
            var result = await graphClient.Me.GetAsync();

            // Output user details
            Console.WriteLine($"User ID: {result.Id}");
            Console.WriteLine($"Display Name: {result.DisplayName}");
            Console.WriteLine($"Email: {result.Mail}");
            Console.WriteLine($"Job Title: {result.JobTitle}");
            // Add more properties as needed

        }
        catch (Exception ex)
        {
            Console.WriteLine($"Error fetching user details: {ex.Message}");
        }
    }
}

Modify the code and use the below to get the details you require:

    try
        {
            var result = await graphClient.Me
                .GetAsync((requestConfiguration) =>
                {
                    requestConfiguration.QueryParameters.Select = new string[] { "displayName", "id", "officeLocation", "givenName", "businessPhones", "jobTitle", "mobilePhone", "preferredLanguage", "surname", "userPrincipalName", "mail" };
                });

            // Output user details
            Console.WriteLine($"User ID: {result.Id}");
            Console.WriteLine($"Display Name: {result.DisplayName}");
            Console.WriteLine($"Email: {result.Mail}");
            Console.WriteLine($"Job Title: {result.JobTitle}");
            Console.WriteLine($"Business Phones: {string.Join(",", result.BusinessPhones)}");
            Console.WriteLine($"Given Name: {result.GivenName}");
            Console.WriteLine($"Mobile Phone: {result.MobilePhone}");
            Console.WriteLine($"Office Location: {result.OfficeLocation}");
            Console.WriteLine($"Preferred Language: {result.PreferredLanguage}");
            Console.WriteLine($"Surname: {result.Surname}");
            Console.WriteLine($"User Principal Name: {result.UserPrincipalName}");
            // Add more properties as needed

        }
        catch (Exception ex)
        {
            Console.WriteLine($"Error fetching user details: {ex.Message}");
        }
    }
}

And get response like below:

UPDATE: To make use of Interactive browser credential flow make use of below code:

Enable Public client flow:

Add the redirect URI in Mobile and desktop applications platform:

using Microsoft.Graph;
using Azure.Identity;

class Program
{
    static async Task Main(string[] args)
    {

        var scopes = new[] { "User.Read" };


var tenantId = "TenantID";
var clientId = "ClientID";
var options = new InteractiveBrowserCredentialOptions
{
    TenantId = tenantId,
    ClientId = clientId,
    AuthorityHost = AzureAuthorityHosts.AzurePublicCloud,
    // MUST be http://localhost or http://localhost:PORT
    // See https://github.com/AzureAD/microsoft-authentication-library-for-dotnet/wiki/System-Browser-on-.Net-Core
    RedirectUri = new Uri("http://localhost"),
};

// https://learn.microsoft.com/dotnet/api/azure.identity.interactivebrowsercredential
var interactiveCredential = new InteractiveBrowserCredential(options);

var graphClient = new GraphServiceClient(interactiveCredential, scopes);

        try
        {
            // Fetch user details using GET request to Microsoft Graph API
            var result = await graphClient.Me.GetAsync();

            // Output user details
            Console.WriteLine($"User ID: {result.Id}");
            Console.WriteLine($"Display Name: {result.DisplayName}");
            Console.WriteLine($"Email: {result.Mail}");
            Console.WriteLine($"Job Title: {result.JobTitle}");
            // Add more properties as needed

        }
        catch (Exception ex)
        {
            Console.WriteLine($"Error fetching user details: {ex.Message}");
        }
    }
}