how to use Microsoft identity platform and OAuth 2.0 authorization code flow from Desktop app

Question

how to use Microsoft identity platform and OAuth 2.0 authorization code flow from Desktop app

Manoj Pant 135

Currently, we are using OAuth2.0 authorization code flow into MVC web application, and its working fine as per our requirements, now same things we also need to implement it into our VB.net desktop application: Below are steps use into MVC web application:

App Register into Azure : Register the app and set a redirect url to collect the authorized code: Web:- https://localhost:44337/Oauth/callback
Code to get Authorized code, access token, and refresh token:

 var redirectUrl = "https://login.microsoftonline.com/3c150d40-f8a6-4418-b062-26ad5b6608dd/oauth2/v2.0/authorize?" +
                "client_id=fe97ed3f-091b-4b86-88d8-dcce141571e1" +
                "&response_type=code" +
                "&redirect_uri=https://localhost:44337/Oauth/callback" +  // need to put correct value in it. (redirect URL during app registration)
                "&response_mode=query" +
                "&scope= User.Read offline_access" +
                "&state=12345";              
           
            return Redirect(redirectUrl);

Collect auth code into redirect url:

 public ActionResult callback(string code, string state, string error) 
        {

            if (!string.IsNullOrWhiteSpace(code))
            {

                RestClient restClient = new RestClient("https://login.microsoftonline.com/3c150d40-f8a6-4418-b062-26ad5b6608dd/oauth2/v2.0/token?");
                RestRequest restRequest = new RestRequest();
            

                restRequest.AddParameter("client_id", "fe97ed3f-091b-4b86-88d8-dcce141571e1");
                restRequest.AddParameter("scope", "User.Read offline_access");
                restRequest.AddParameter("grant_type", "authorization_code");
                restRequest.AddParameter("code", code);
                restRequest.AddParameter("redirect_uri", "https://localhost:44337/Oauth/callback");
                restRequest.AddParameter("client_secret", "E4K8Q~60nN~Bgpm31a5d3UeOGzfet93THIembcZP");

               

                var response = restClient.Post(restRequest);

                if (response.StatusCode == System.Net.HttpStatusCode.OK)
                {
                    var customerDto = JsonConvert.DeserializeObject<Token>(response.Content);
                    

                }


                
            }
           
        }

Manoj Pant 135

4.Refresh the access token with the refresh token:

  public ActionResult RefreshAccessToken()
        {
            RestClient restClient = new RestClient("https://login.microsoftonline.com/3c150d40-f8a6-4418-b062-26ad5b6608dd/oauth2/v2.0/token?");
            RestRequest restRequest = new RestRequest();


            var refreshToken = "0.AXwAQA0VPKb4GESwYiatW2YI3T_tl_4bCYZLiNjczhQVceG7AEA.AgABAAEAAAD--DLA3VO7QrddgJg7WevrAgDs_wUA9P-OHeXRZcbVic5j4AfJFIq68k87YNN2li3z3yi0Xo4adgdNy3ZhR6b1BJTZ1Xywg6hx4DOn-bqV_OSreX6WgE8gl3KIcTa6IlG5NSWgCvGtxhTvhRHsilL3Pk3XoIJ4tiyeVaJSW06O3VdUVgZnGp9V2kIHZRigYAs9uAFHv-47xtdTVBelXnBeuIqFS4XwjfEy63zXsSy5L2zKki999g2sUPVzAVPEIjnR7YpxRucB7C7hfPign8s6TVeHfEMNl84x9fyycvfrCGWTIzOe0HiLJKxJFyt191-mD-X1cfO1g-AEQxGPRmGXJ6dU7D0cg9OLFZQYudcMmgKem1uOfm81m6skulJ9KLPGtOAosm3JMixPK3ksLp1bzIV2D5xmNDw6mVWzA3OpPUtsdjd2Nzvn9lV_6X8_D8XzjM_0H_d3ESKp8DI4hCukWzXFXiX5Nk0UcT4qcxQCiPzUAWEJhBQuUiXrhCYB1k3Fh5fqwot25hAkgQRXpBwTzJd_zcJfx9aSgHNQU2LPnHIL465arHQXpVoKz_fL7Fjnk8AqYq7K8Ox6rh93MtGhoHRtRsMKt-o234kBpk6I_vD1wkYRpfTYa6c89ZF4FYtm3FZvYZfZKThKmye7jJHQfLs724CjPtaNlfZ0ZoJNTgSOg5rQ_CiGIZIMgiYpGD7yRcbcbe4VQ7T53gUL09t3WZM8ufGI97EsY3py0sxedpq6zrgGUPDpq-E2viSjRjc7fqjM9T676PIuVkdqq9Ckco-1LNs97ySLCFp2F5U-zdRjjQewmIBoMZxfGcnQ0IbUGg52xOZ3iTdR";

            restRequest.AddParameter("client_id", "fe97ed3f-091b-4b86-88d8-dcce141571e1");
            restRequest.AddParameter("scope", "User.Read offline_access");
            restRequest.AddParameter("grant_type", "refresh_token");
            restRequest.AddParameter("refresh_token", refreshToken);          
            restRequest.AddParameter("client_secret", "E4K8Q~60nN~Bgpm31a5d3UeOGzfet93THIembcZP");

            var response = restClient.Post(restRequest);

            if (response.StatusCode == System.Net.HttpStatusCode.OK)
            {
                var TokenDto = JsonConvert.DeserializeObject<Token>(response.Content);
                

            }

            r

        }

Manoj Pant 135 Reputation points

2023-04-26T07:11:32.9166667+00:00
How to collect authorize code into redirect url set (https://login.microsoftonline.com/common/oauth2/nativeclient) in vb.net desktop application For implementing same above things over the VB.net desktop, we have applied the below steps but confusion, about how we will collect authorize code in the redirect URL of the desktop app(https://login.microsoftonline.com/common/oauth2/nativeclient) Step1: Register app and set redirect URL: Mobile and Desktop application: https://login.microsoftonline.com/common/oauth2/nativeclient Step 2: Code to call /authorize.

Dim redirectUrl = "https://login.microsoftonline.com/3c150d40-f8a6-4418-b062-26ad5b6608dd/oauth2/v2.0/authorize?" & "scope=User.Read offline_access" & "&response_type=code" & "&response_mode=query" & "&state=12345" & "&redirect_uri=https://login.microsoftonline.com/common/oauth2/nativeclient" & "&client_id=fe97ed3f-091b-4b86-88d8-dcce141571e1" Dim client As HttpClient = New HttpClient() Dim res = Await client.GetAsync(redirectUrl) If res.IsSuccessStatusCode Then Dim data = Await res.Content.ReadAsStringAsync() End If

1 answer

Your answer

Manoj Pant 135 Reputation points

2023-04-26T07:02:53.1233333+00:00

4.Refresh the access token with the refresh token:

public ActionResult RefreshAccessToken() { RestClient restClient = new RestClient("https://login.microsoftonline.com/3c150d40-f8a6-4418-b062-26ad5b6608dd/oauth2/v2.0/token?"); RestRequest restRequest = new RestRequest(); var refreshToken = "0.AXwAQA0VPKb4GESwYiatW2YI3T_tl_4bCYZLiNjczhQVceG7AEA.AgABAAEAAAD--DLA3VO7QrddgJg7WevrAgDs_wUA9P-OHeXRZcbVic5j4AfJFIq68k87YNN2li3z3yi0Xo4adgdNy3ZhR6b1BJTZ1Xywg6hx4DOn-bqV_OSreX6WgE8gl3KIcTa6IlG5NSWgCvGtxhTvhRHsilL3Pk3XoIJ4tiyeVaJSW06O3VdUVgZnGp9V2kIHZRigYAs9uAFHv-47xtdTVBelXnBeuIqFS4XwjfEy63zXsSy5L2zKki999g2sUPVzAVPEIjnR7YpxRucB7C7hfPign8s6TVeHfEMNl84x9fyycvfrCGWTIzOe0HiLJKxJFyt191-mD-X1cfO1g-AEQxGPRmGXJ6dU7D0cg9OLFZQYudcMmgKem1uOfm81m6skulJ9KLPGtOAosm3JMixPK3ksLp1bzIV2D5xmNDw6mVWzA3OpPUtsdjd2Nzvn9lV_6X8_D8XzjM_0H_d3ESKp8DI4hCukWzXFXiX5Nk0UcT4qcxQCiPzUAWEJhBQuUiXrhCYB1k3Fh5fqwot25hAkgQRXpBwTzJd_zcJfx9aSgHNQU2LPnHIL465arHQXpVoKz_fL7Fjnk8AqYq7K8Ox6rh93MtGhoHRtRsMKt-o234kBpk6I_vD1wkYRpfTYa6c89ZF4FYtm3FZvYZfZKThKmye7jJHQfLs724CjPtaNlfZ0ZoJNTgSOg5rQ_CiGIZIMgiYpGD7yRcbcbe4VQ7T53gUL09t3WZM8ufGI97EsY3py0sxedpq6zrgGUPDpq-E2viSjRjc7fqjM9T676PIuVkdqq9Ckco-1LNs97ySLCFp2F5U-zdRjjQewmIBoMZxfGcnQ0IbUGg52xOZ3iTdR"; restRequest.AddParameter("client_id", "fe97ed3f-091b-4b86-88d8-dcce141571e1"); restRequest.AddParameter("scope", "User.Read offline_access"); restRequest.AddParameter("grant_type", "refresh_token"); restRequest.AddParameter("refresh_token", refreshToken); restRequest.AddParameter("client_secret", "E4K8Q~60nN~Bgpm31a5d3UeOGzfet93THIembcZP"); var response = restClient.Post(restRequest); if (response.StatusCode == System.Net.HttpStatusCode.OK) { var TokenDto = JsonConvert.DeserializeObject<Token>(response.Content); } r }
Manoj Pant 135 Reputation points

2023-04-26T07:11:32.9166667+00:00

How to collect authorize code into redirect url set (https://login.microsoftonline.com/common/oauth2/nativeclient) in vb.net desktop application For implementing same above things over the VB.net desktop, we have applied the below steps but confusion, about how we will collect authorize code in the redirect URL of the desktop app(https://login.microsoftonline.com/common/oauth2/nativeclient) Step1: Register app and set redirect URL: Mobile and Desktop application: https://login.microsoftonline.com/common/oauth2/nativeclient Step 2: Code to call /authorize.

Dim redirectUrl = "https://login.microsoftonline.com/3c150d40-f8a6-4418-b062-26ad5b6608dd/oauth2/v2.0/authorize?" & "scope=User.Read offline_access" & "&response_type=code" & "&response_mode=query" & "&state=12345" & "&redirect_uri=https://login.microsoftonline.com/common/oauth2/nativeclient" & "&client_id=fe97ed3f-091b-4b86-88d8-dcce141571e1" Dim client As HttpClient = New HttpClient() Dim res = Await client.GetAsync(redirectUrl) If res.IsSuccessStatusCode Then Dim data = Await res.Content.ReadAsStringAsync() End If

Answer 1

Shweta Mathur 30,296 Microsoft Employee Moderator

Hi @Manoj Pant ,

Thanks for reaching out.

Microsoft Identity Platform provide reference samples for desktop applications which are using MSAL libraries to acquire token directly using Authorization Code flow :

https://learn.microsoft.com/en-us/azure/active-directory/develop/sample-v2-code#desktop

Hope this will help.

Thanks,

Shweta

Please remember to "Accept Answer" if answer helped you.

Share via

how to use Microsoft identity platform and OAuth 2.0 authorization code flow from Desktop app

1 answer

Your answer