Microsoft.Graph.Auth

An implementation using MSAL.Net to acquire token by authorization code flow for web apps.

A property.

A scopes property.

Construct a new .

used to authentication requests. Scopes required to access Microsoft Graph. This defaults to https://graph.microsoft.com/.default if none is set.

Adds an authentication header to the incoming request by checking the application's for an unexpired access token. If an access token doesn't exist, it will throw a and the web app must handle this and perform a challange.

A to authenticate.

Helper used in Startup class to retrieve a token from an authorization code.

An authorization code received from an openid connect auth flow.

An implementation using MSAL.Net to acquire token by client credential flow.

A Scope property

A property.

Constructs a new

A to pass to for authentication. Scope required to access Microsoft Graph. This defaults to https://graph.microsoft.com/.default when none is set.

Adds an authentication header to the incoming request by checking the application's for an unexpired access token. If a token is not found or expired, it gets a new one.

A to authenticate

An implementation using MSAL.Net to acquire token by on behalf of flow.

A property.

A scopes property.

Constructs a new

A to pass to for authentication. Scopes required to access Microsoft Graph. This defaults to https://graph.microsoft.com/.default when none is set.

Adds an authentication header to the incoming request by checking the application's for an unexpired access token. If a token is not found or expired, it gets a new one.

A to authenticate.

Creats a object from a JWT access token.

JWT token to parse.

Graph authentication exception

Creates a new authentication exception.

The error that triggered the exception. The possible inner exception.

The error from the authentication exception.

Gets retry after timespan from .

An object. A with RetryAfter header

Extension methods for the interface.

Sets Microsoft Graph's scopes that will be used by to authenticate this request and can be used to perform incremental scope consent. This only works with the default authentication handler and default set of Microsoft graph authentication providers. If you use a custom authentication handler or authentication provider, you have to handle it's retrieval in your implementation.

The . Microsoft graph scopes used to authenticate this request.

Sets MSAL's force refresh flag to for this request. If set to true, will refresh existing access token in cahce. This defaults to false if not set.

The . A flag to determine whether refresh access token or not.

Sets to be used to retrieve an access token for this request. It is also used to handle multi-user/ multi-tenant access token cache storage and retrieval.

The . A that represents a user account. At a minimum, the ObjectId and TenantId must be set.

Sets for this request. This should only be used with .

The . A for the user.

Sets a username (email) and password of an Azure AD account to authenticate. This should only be used with . This provider is NOT RECOMMENDED because it exposes the users password. We recommend you use instead.

The . Email address of the user to authenticate. Password of the user to authenticate.

Extension methods for the class.

Converts an instance of the class to an instance of the class.

Conatins extension methods for .

Attempts to acquire access token silently from the token cache.

An exception occured when attempting to get access token silently.

Determines if an authority url has a `well known` tenant name (common, consumers, organizations) in its tenant segment.

The authority url to check. True is pre-defined tenant names are present, and false if not.

Options class used to configure the authentication providers.

A MaxRetry property.

Scopes to use when authenticating.

Whether or not to force a token refresh.

Graph user account to use when authenticating.

An single claim asserted by a JWT token.

Password to use when authenticating with UsernamePasswordProvider.

Claims for a given request

An implementation using MSAL.Net to acquire token by device code.

A property.

A scopes property.

DeviceCodeResultCallback property

Constructs a new

A to pass to for authentication. Scopes required to access Microsoft Graph. This defaults to https://graph.microsoft.com/.default when none is set. Callback containing information to show the user about how to authenticate and enter the device code.

Adds an authentication header to the incoming request by checking the application's for an unexpired access token. If a token is not found or expired, it gets a new one.

A to authenticate.

An implementation using MSAL.Net to acquire token by integrated windows authentication.

A property.

A scopes property.

Constructs a new

A to pass to for authentication. Scopes required to access Microsoft Graph. This defaults to https://graph.microsoft.com/.default when none is set.

Adds an authentication header to the incoming request by checking the application's for an unexpired access token. If a token is not found or expired, it gets a new one.

A to authenticate.

An implementation using MSAL.Net to acquire token interactively

A property.

A scopes property.

Indicates the interactive experience for the user.

Parent activity or window.

Parent activity or window.

Constructs a new

A to pass to for authentication. Scopes required to access Microsoft Graph. This defaults to https://graph.microsoft.com/.default when none is set. Designed interactive experience for the user. Defaults to . Object containing a reference to the parent window/activity. Object containing a reference to the parent window/activity.

Adds an authentication header to the incoming request by checking the application's for an unexpired access token. If a token is not found or expired, it gets a new one.

A to authenticate.

An implementation using MSAL.Net to acquire token by username and password. This only works with work and school accounts.

A property.

A scopes property.

Constructs a new . This provider is NOT RECOMMENDED because it exposes the users password. We recommend you use instead.

A to pass to for authentication. Scopes required to access Microsoft Graph. This defaults to https://graph.microsoft.com/.default when none is set.

Adds an authentication header to the incoming request by checking the application's for an unexpired access token. If a token is not found or expired, it gets a new one.

A to authenticate.