Microsoft Authenticator
A Microsoft app for iOS and Android devices that enables authentication with two-factor verification, phone sign-in, and code generation.
5,486 questions
Authorization Code Grant and Notifies on Microsoft Authenticator
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(188.79999999999998, 80%, 28%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EA%3C/text%3E%3C/svg%3E)
AdriR
5
Reputation points
Hi,
I want to implement this flow on my code:
- When you click on the login button, the web application (registered on Azure) makes a request to the authentication server (Azure AD) with the user's credentials (username and password).
- Azure AD verifies the user's credentials and generates a unique authorization code associated with that specific login request.
- Azure AD redirects the web application to Microsoft Authenticator, including the authorization code in the redirect.
- Microsoft Authenticator displays a notification to the user on the mobile device, requesting approval for login.
- User hits the approve button on the Microsoft Authenticator notification (within 60 seconds?)
- On the confirmation click, Microsoft Authenticator sends the authorization code to Azure AD.
- Azure AD verifies the authorization code and generates a valid access token.
- Azure AD sends the access token to the web application
Can Azure AD do these things? If yes, is this code complete?
String loginAndToken(String username, String password) throws Exception {
User user = null; PublicClientApplication application = PublicClientApplication.builder(clientID) .authority("https://login.microsoftonline.com + tenantId).build(); UserNamePasswordParameters parameters = UserNamePasswordParameters.builder(new HashSet<>(Arrays.asList("openid", "profile")), username, password.toCharArray()) .build(); IAuthenticationResult result = application.acquireToken(parameters).get(60, TimeUnit.SECONDS); if(result == null) { throw new BadCredentialsException ("User did not authorize access within 60 seconds"); } else { return result.accessToken();}
I have this problem wher I try this row:
application.acquireToken(parameters).get(60, TimeUnit.SECONDS);
This is my exception:
2023-05-15 17:15:55.173 ERROR 7708 --- [onPool-worker-1] c.m.aad.msal4j.PublicClientApplication : [Correlation ID: ########-####-####-####-############] Execution of class com.microsoft.aad.msal4j.AcquireTokenByAuthorizationGrantSupplier failed.
com.microsoft.aad.msal4j.MsalClientException: java.net.SocketTimeoutException: connect timed out
What could be the problem?
Thanks a lot