25,249 questions
Popup login flow (MSAL 2.0) not working for certain users
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(198.4, 28.000000000000004%, 29%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EOH%3C/text%3E%3C/svg%3E)
Oli Hall
0
Reputation points
I'm developing an App Service JS app using Nuxt, and have implemented an OAuth login flow using MSAL 2.0 following the suggested vanilla JS examples (e.g. https://github.com/Azure-Samples/ms-identity-javascript-v2). This works fine in local testing, and similarly for myself upon deployment, but when another user tries it, the popup flow consistently fails. The login popup opens, they log in, and then it redirects back to the unauthenticated app in the popup, rather than the popup completing the auth flow and closing. I'm at a loss as to how to pick apart what's going on here – I've seen various other posts noting the presence of race conditions in some cases, or redirect logic stripping the auth hash from the URL (e.g. https://stackoverflow.com/questions/73005372/msal-all-tenants-sign-on-with-pop-up-redirects-inside-popup, https://stackoverflow.com/questions/67998252/why-does-msal-angular-loginpopup-pop-ups-its-own-page-when-i-am-using-azure-s/74720188#74720188) – I've tried to account for those cases, but it's not affected the behaviour at all.
An added element to the mystery: the app is mapped to a custom domain, and the user experiencing issues sees that the app is redirecting them to *
Microsoft Security | Microsoft Entra | Microsoft Entra ID
{count} votes
-
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(246.4, 20%, 33%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESM%3C/text%3E%3C/svg%3E)
Shweta Mathur 30,301 Reputation points Microsoft Employee Moderator2023-02-20T09:58:55.5066667+00:00 Hi @Oli Hall ,
Thanks for reaching out.
This seems to be browser related issue rather than application issue. Are you facing this issue at particular browser or in all the browsers.
There are known issues on Micrsoft Edge browsers for MSAL. Make sure that the application domain and any other sites involved in the redirects of the authentication flow are added as trusted sites in the security settings of the browser
Thanks,
Shweta
Sign in to comment
Sign in to answer