flutterauthenticationazure-ad-b2cazure-ad-msalmsal.js
Flutter MSAL_js-based (B2C) Authentication fails
EDIT: The real culprit was the https: in https:localhost:8080. My browser couldn't handle this properly. Switching to http:// resolved the issue! How I need to figure out how to make my browser work properly with the https-enabled localhost.
OP: I've been trying to set up the Authentication flow with AD B2C in Flutter.
I have configured the tenant, the app, the userflow called B2C_1_SignUpSignIn with the E-Mail/Password and additionally the Google identity providers. Both have been tested, both work in portal.
Now, I have found this example online of how to use MSAL_js (the flutter wrapper for msal.js). https://github.com/Francessco121/msal-js-dart/tree/master/example/flutter_example
I've added (as per the example)
<!-- MSAL.js -->
<script type="text/javascript" src="https://alcdn.msauth.net/browser/2.14.2/js/msal-browser.min.js"
integrity="sha384-ggh+EF1aSqm+Y4yvv2n17KpurNcZTeYtUZUvhPziElsstmIEubyEB6AIVpKLuZgr" crossorigin="anonymous">
</script>
to my web/index.html and have taken over the main.dart code from the example expecting it to work (I have configured the PublicClientApplication slightly diferently though to accommodate to my B2C scenario)
final publicClientApp = PublicClientApplication(
Configuration()
..auth = (BrowserAuthOptions()
// Give MSAL our client ID
..clientId = clientId
..authority =
"https://humbiapp.b2clogin.com/humbiapp.onmicrosoft.com/B2C_1_SignUpSignIn" // B2C Policy Authority
..knownAuthorities = ["humbiapp.b2clogin.com"] // Add your B2C domain here
..redirectUri = "https://localhost:8080/signin-oidc")
..system = (BrowserSystemOptions()
..loggerOptions = (LoggerOptions()
..loggerCallback = _loggerCallback
// Log just about everything for the purpose of this demo
..logLevel = LogLevel.verbose)),
);
The rest of the code is the same.
The web application starts.
However, neither the popup nor the redirect login work as intended!
- In Redirect, when I click on the Google provider, the google mask shows up but it's "read-only". I can't input my address there, nothing happens upon typing.
- In Popup, I can login using Google Identity Provider and get accepted. However, upon receiving the token and the state on my redirect address, I get this:
What am I missing? Is the MSAL.js library too old? Do I need some extra steps for the B2C with the redirect url?
Solution
I created a sample Flutter application with Azure AD B2C using MSAL.js and successfully logged in and out using Google as an identity provider.
import 'package:flutter/material.dart';
import 'package:msal_js/msal_js.dart';
void main() {
WidgetsFlutterBinding.ensureInitialized();
runApp(MyApp());
}
class MyApp extends StatefulWidget {
@override
State<MyApp> createState() => _MyAppState();
}
class _MyAppState extends State<MyApp> {
late PublicClientApplication pca;
AccountInfo? _account;
final String clientId = "<clientID>";
final String authority = "https://<tenantName>.b2clogin.com/<tenantName>.onmicrosoft.com/<policyName>";
final String redirectUri = "http://localhost:8080";
@override
void initState() {
super.initState();
_initializeMSAL();
}
void _initializeMSAL() {
pca = PublicClientApplication(Configuration()
..auth = (BrowserAuthOptions()
..clientId = clientId
..authority = authority
..knownAuthorities = ["<tenantName>.b2clogin.com"]
..redirectUri = redirectUri)
..system = (BrowserSystemOptions()
..loggerOptions = (LoggerOptions()
..loggerCallback = (level, message, containsPii) {
print("[MSAL] $message");
}
..logLevel = LogLevel.verbose)));
pca.handleRedirectFuture().then((result) {
if (result != null) {
print("[MSAL] Redirect successful.");
setState(() {
_account = result.account;
});
}
_getCurrentUser();
}).catchError((error) {
print("[MSAL] Error handling redirect: $error");
});
}
Future<void> _getCurrentUser() async {
final accounts = await pca.getAllAccounts();
if (accounts.isNotEmpty) {
setState(() {
_account = accounts.first;
});
}
}
Future<void> _loginPopup() async {
try {
final result = await pca.loginPopup(PopupRequest()
..scopes = ["openid", "offline_access"]);
setState(() {
_account = result.account;
});
} catch (e) {
print("[MSAL] Login error: $e");
}
}
Future<void> _loginRedirect() async {
try {
await pca.loginRedirect(RedirectRequest()
..scopes = ["openid", "offline_access"]);
} catch (e) {
print("[MSAL] Redirect login error: $e");
}
}
Future<void> _logoutPopup() async {
try {
await pca.logoutPopup();
setState(() {
_account = null;
});
} catch (e) {
print("[MSAL] Logout error: $e");
}
}
Future<void> _logoutRedirect() async {
try {
await pca.logoutRedirect();
} catch (e) {
print("[MSAL] Redirect logout error: $e");
}
}
@override
Widget build(BuildContext context) {
return MaterialApp(
home: Scaffold(
appBar: AppBar(title: const Text("Flutter Web MSAL.js Demo")),
body: Center(
child: Column(
mainAxisAlignment: MainAxisAlignment.center,
children: <Widget>[
if (_account == null) ...[
ElevatedButton(
child: const Text('Login Redirect'),
onPressed: _loginRedirect,
),
ElevatedButton(
child: const Text('Login Popup'),
onPressed: _loginPopup,
),
],
if (_account != null) ...[
Text('Signed in as ${_account!.username}'),
ElevatedButton(
child: const Text('Logout Redirect'),
onPressed: _logoutRedirect,
),
ElevatedButton(
child: const Text('Logout Popup'),
onPressed: _logoutPopup,
),
]
],
),
),
),
);
}
}
I have added the below URL in the service principle redirect URI under Mobile and desktop applications and enabled the Allow public client flows.
http://localhost:8080
Output :
I successfully logged in and logged out with Google provider.
- Flutter MSAL_js-based (B2C) Authentication fails
- Flutter app icon is broken, how can I fix it?
- Flutter error: Execution failed for task ':app:compileDebugJavaWithJavac
- Move accessibility focus programmatically
- Make AppBar transparent and show background image which is set to whole screen
- remove default splash screen android & ios flutter
- How to close Scaffold's drawer after an item tap?
- Flutter: Scrolling to a widget in ListView
- How to solve "Unable to find git in your PATH" on Flutter?
- How to apply a color filter on a png with transparency on flutter?
- How to convert Color to a list of RGB values in Dart & Flutter?
- No permissions found in Manifest [Android]
- Permissions not working even though they are in info.plist for Camera & Microphone
- Is there any way to change the Java version shown in the flutter doctor command?
- error: 'Flutter/Flutter.h' file not found when flutter run on iOS
- control & disable a dropdown button in flutter?
- A failure occurred while executing com.android.build.gradle.internal.res.LinkApplicationAndroidResourcesTask$TaskAction
- Flutter NSException: Configuration fails. It may be caused by an invalid GOOGLE_APP_ID in GoogleService-Info.plist or set in the customized options
- what is the correct way or version to add flutter extension to azure devops
- error while build iOS app in Xcode : Sandbox: rsync.samba (13105) deny(1) file-write-create, Flutter failed to write to a file
- Flutter riverpod: repeat call API after x second
- When the keyboard appears, the Flutter widgets resize. How to prevent this?
- How does setting a buffer geometry attribute work in three_js (Flutter)?
- New problem during fixing incompatibility between Gradle and Java versions in Flutter
- Execution failed for task ':path_provider_android:compileDebugJavaWithJavac'
- Generate Signed Bundle/APK option is missing in Android Studio
- How can I start a Flutter app's foreground service on boot in Android without using the flutter_background_service plugin?
- Flutter web hangs on ios safari/chrome with no errors
- Unexpected space inside Flutter Column widget
- flutter: no refresh indicator when using RefreshIndicator