Skip to content

Latest commit

 

History

History
113 lines (71 loc) · 6.9 KB

File metadata and controls

113 lines (71 loc) · 6.9 KB
languages page_type name description products urlFragment
csharp
sample
ASP.NET Core 8.0 Blazor WebAssembly that accesses Microsoft Graph
This ASP.NET Core 8.0 Blazor WebAssembly that signs in and contacts Microsoft Graph on behalf of the user. The code in this sample is used by one or more articles on docs.microsoft.com.
azure
entra-id
ms-graph
ms-identity-docs-code-spa-blazor-wasm-csharp

ASP.NET Core 8.0 Blazor WebAssembly | standalone app | user sign-in, protected web API access (Microsoft Graph) | Microsoft identity platform

The standalone app in this scenario is created using the ASP.NET Core 8.0 Blazor WebAssembly template and modified to allow sign-in with a Microsoft Entra account. It uses the Microsoft.Authentication.WebAssembly.MSAL package to authenticate users and obtain tokens for calling protected APIs. In other words, the app adds an authentication layer that allows users to sign in with their Work and school accounts and make web API calls to protected resources on their behalf.

Note: This code sample uses the Microsoft.Authentication.WebAssembly.MSAL package, which is a modified version of the Microsoft.Identity.Client library.

A screenshot of an ASP.NET Core 8.0 Blazor WebAssembly application displaying a response from Microsoft Graph.

Prerequisites

Setup

1. Register the web API application in your Microsoft Entra ID

First, complete the steps in Register an application with the Microsoft identity platform to register the sample app.

Use the following settings for your app registration:

App registration
setting
Value for this sample app Notes
Name identity-client-app Suggested value for this sample.
You can change the app name at any time.
Supported account types Accounts in this organizational directory only (Default Directory only - Single tenant) Required for this sample.
Support for the Single tenant.
Platform type Single-page application Required value for this sample.
Enables the required and optional settings for the app type.
Redirect URIs http://localhost:5000/authentication/login-callback Required value for this sample.
You can change that later in your own implementation.

ℹ️ Bold text in the table matches (or is similar to) a UI element in the Microsoft Entra admin center, while code formatting indicates a value you enter into a text box or select in the Microsoft Entra admin center.

2. Configure the web app

  1. Open the BlazorWasm.csproj under the the sign-in-blazorwasm folder in your code editor.

  2. Open the ./wwwroot/appsettings.json file and modify the following code:

    "Authority": "https://login.microsoftonline.com/Enter the tenant ID obtained from the Microsoft Entra admin center",
    "ClientId": "Enter the client ID obtained from the Microsoft Entra admin center",

3. Install the tooling for ASP.NET Core Blazor

  1. Install .NET WebAssembly build tools

    dotnet workload install wasm-tools

For more information, please refer to .NET WebAssembly build tools

Run the application

1. Run the webapp

  1. Execute the following command to get the app up and running:

    dotnet run

2. Sign in and sign out the web app

  1. Once the web app is listening, navigate to https://localhost:5001 and enter your credentials. We recommend using a private browser window to avoid conflicts with your current session.

A screenshot of an ASP.NET Core 8.0 Blazor WebAssembly application displaying a response from Microsoft Graph.

  1. Select Logout to sign-out. Once signed out, you can close the browser.

A screenshot of an ASP.NET Core 8.0 Blazor WebAssembly application indicating the user signed-out and allowing click "Login" to signin again.

About the code

This ASP.NET Core Web App is created using .NET Blazor WebAssembly. The app has two main routes, one is public while the another one is requiring the user to be authenticated in Microsoft Entra ID.

When a user logs out, their browser is redirected to a public route confirming the user signed-out. After signing in, and if they've not previously done so, the user is asked to consent to the app's request for permission to access their data.

Reporting problems

Sample app not working?

If you can't get the sample working, you've checked Stack Overflow, and you've already searched the issues in this sample's repository, open an issue report the problem.

  1. Search the GitHub issues in the repository - your problem might already have been reported or have an answer.
  2. Nothing similar? Open an issue that clearly explains the problem you're having running the sample app.

All other issues

⚠️ WARNING: Any issue not limited to running this or another sample app will be closed without being addressed.

For all other requests, see Support and help options for developers | Microsoft identity platform.

Contributing

If you'd like to contribute to this sample, see CONTRIBUTING.MD.

This project has adopted the Microsoft Open Source Code of Conduct. For more information, see the Code of Conduct FAQ or contact opencode@microsoft.com with any additional questions or comments.