Skip to content

Instantly share code, notes, and snippets.

@manoj-choudhari-git

manoj-choudhari-git/app-config.ts

Created May 15, 2020 19:47
Show Gist options
  • Star 1 You must be signed in to star a gist
  • Fork 0 You must be signed in to fork a gist
  • Save manoj-choudhari-git/01e861a0bd828244b046e72c57510a11 to your computer and use it in GitHub Desktop.
Save manoj-choudhari-git/01e861a0bd828244b046e72c57510a11 to your computer and use it in GitHub Desktop.
Download ZIP
App Config TS for Azure AD protected Angular App
Raw
app-config.ts
import { Configuration } from 'msal';
import { MsalAngularConfiguration } from '@azure/msal-angular';
// this checks if the app is running on IE
export const isIE = window.navigator.userAgent.indexOf('MSIE ') > -1 ||
window.navigator.userAgent.indexOf('Trident/') > -1;
/***********************************************************
* STEP 1 - B2C Policies and User Flows
***********************************************************/
export const b2cPolicies = {
names: {
signUpSignIn: "B2C_1_SignUpSignIn",
resetPassword: "B2C_1_Reset",
},
authorities: {
signUpSignIn: {
authority: "https://samplead.b2clogin.com/samplead.onmicrosoft.com/B2C_1_SignUpSignIn"
},
resetPassword: {
authority: "https://samplead.b2clogin.com/samplead.onmicrosoft.com/b2c_1_reset"
}
}
}
/***********************************************************
* STEP 2 - Web API Scopes & URLs
***********************************************************/
export const apiConfig: { b2cScopes: string[], webApi: string } = {
b2cScopes: ['https://samplead.onmicrosoft.com/sample-api/api-scope'],
webApi: 'https://localhost:44379/weatherforecast'
};
/***********************************************************
* STEP 3 - Authentication Configurations
***********************************************************/
export const msalConfig: Configuration = {
auth: {
clientId: "3227a83e-c3bc-482d-82a1-9eee30b73609",
authority: b2cPolicies.authorities.signUpSignIn.authority,
redirectUri: "https://localhost:44361/",
postLogoutRedirectUri: "https://localhost:44361/",
navigateToLoginRequestUrl: true,
validateAuthority: false,
},
cache: {
cacheLocation: "localStorage",
// Set this to "true" to save cache in cookies
// to address trusted zones limitations in IE
storeAuthStateInCookie: isIE,
},
}
/***********************************************************
* STEP 4 - Scopes Required For Login
***********************************************************/
export const loginRequest: { scopes: string[] } = {
scopes: ['openid', 'profile'],
};
/***********************************************************
* STEP 5 - Scopes which will be used for the access token
* request for your web API
***********************************************************/
export const tokenRequest: { scopes: string[] } = {
scopes: apiConfig.b2cScopes
};
/***********************************************************
* STEP 6 - MSAL Angular Configurations
* Define protected API URLs and required scopes
***********************************************************/
export const protectedResourceMap: [string, string[]][] = [
[apiConfig.webApi, apiConfig.b2cScopes]
];
/***********************************************************
* STEP 7 - MSAL Angular specific configurations
*
***********************************************************/
export const msalAngularConfig: MsalAngularConfiguration = {
popUp: !isIE,
consentScopes: [
...loginRequest.scopes,
...tokenRequest.scopes,
],
// API calls to these coordinates will NOT activate MSALGuard
unprotectedResources: [],
// API calls to these coordinates will activate MSALGuard
protectedResourceMap,
extraQueryParameters: {}
}
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment