Skip to content

Authorization Code URL Builder

Jump to bottom
Santiago Gonzalez edited this page Feb 13, 2020 · 2 revisions

Authorization Code Flow

When performing Oauth2 authorization code flow, the first step is to direct the user to the authorization endpoint, where they will authenticate, and the identity provider will respond with an authentication code. The authentication code can then be used to redeem a token by calling MSALs PublicClientApplication.acquireToken(AuthorizationCodeParameters) or ConfidentialClientApplication.acquireToken(AuthorizationCodeParameters).

Authorization URL builder

As of MSAL4J v1.4, there is now a helper method that can be used to craft the authorization code URL, used in the first step of OAuth2 authorization code flow.

     PublicClientApplication publicClientApplication =
                PublicClientApplication
                        .builder(CLIENT_ID)
                        .authority(AUTHORITY)
                        .build();

        AuthorizationRequestUrlParameters parameters =
                AuthorizationRequestUrlParameters
                        .builder(interactiveRequestParameters.redirectUri().toString(),
                                interactiveRequestParameters.scopes())
                        .codeChallenge(verifier)
                        .codeChallengeMethod("S256")
                        .state(state);
                        .build();

        URL authorizationCodeUrl = publicClientApplication.getAuthorizationRequestUrl(parameters);

Getting started with MSAL Java

Configure, build, and test

Advanced topics

FAQ & Common Issues

News

Other resources

Clone this wiki locally