This sample Android application demonstrates how to handle sign-up, sign-in, sign-out, and password reset scenarios using Microsoft Entra for customers. You can configure the sample to call a protected web API after authenticating successfully.
| File/folder | Description |
|---|---|
app/src/main/res/raw/native_auth_sample_app_config.json |
Configuration file. |
.gitignore |
Define what to ignore at commit time. |
README.md |
This README file. |
LICENSE |
The license for the sample. |
- An external tenant. To create one, choose from the following methods:
- (Recommended) Use the Microsoft Entra External ID extension to set up an external tenant directly in Visual Studio Code.
- Create a new external tenant in the Microsoft Entra admin center.
- A user account in your Microsoft Entra External ID tenant.
To enable your application to authenicate users with Microsoft Entra, Microsoft Entra for customers must be made aware of the application you create. The following steps show you how to:
Register your app in the Microsoft Entra admin center using the steps in Register an application.
Enable public client and native authentication flows for the registered application using the steps in Enable public client and native authentication flows.
Grant API permissions to the registered application by following the steps in Grant API permissions.
Create a user flow by following the steps in Create a user flow.
Associate the application with the user flow by following the steps in Associate the application with the user flow.
Clone the sample Android mobile application by following the steps outlined in Clone sample Android mobile application.
Configure the sample Android mobile application by following the steps in Configure the sample Android mobile application.
Run and test the Android sample mobile application by following the steps in Run and test sample Android mobile application.
Follow the steps in Sign in users and call an API in a sample Android mobile app by using native authentication to sign in users and call a protected API in the Android sample mobile app.
Add email one-time passcode MFA to the sign in flow by following the steps in Add email one-time passcode MFA to your Android app.
Open app/src/main/res/raw/native_auth_sample_app_config.json file and you find the following json configurations:
{
"client_id": "Enter_the_Application_Id_Here",
"authorities": [
{
"type": "CIAM",
"authority_url": "https://Enter_the_Tenant_Subdomain_Here.ciamlogin.com/Enter_the_Tenant_Subdomain_Here.onmicrosoft.com/"
}
],
"challenge_types": ["oob", "password"],
"logging": {
"pii_enabled": false,
"log_level": "INFO",
"logcat_enabled": true
}
}The JSON configuration file has:
- client_id - the value Enter_the_Application_Id_Here is replaced with Application (client) ID of the app you register during the project setup. The Application (client) ID is unique identifier of your registered application.
- Enter_the_Tenant_Subdomain_Here - the value Enter_the_Tenant_Subdomain_Here is replaced with the Directory (tenant) subdomain. The tenant subdomain URL is used to construct the authentication endpoint for your app.
You use app/src/main/res/raw/native_auth_sample_app_config.json file to set configuration options when you initialize the client app in the Microsoft Authentication Library (MSAL).
To create SDK instance, use the following code:
private lateinit var authClient: INativeAuthPublicClientApplication
override fun onCreate(savedInstanceState: Bundle?) {
super.onCreate(savedInstanceState)
setContentView(R.layout.activity_main)
authClient = PublicClientApplication.createNativeAuthPublicClientApplication(
this,
R.raw.auth_config_native_auth
)
} In the onCreate method, create an MSAL instance so that we can perform authentication logic and interact with our tenant through native authentication APIs. The createNativeAuthPublicClientApplication() method returns an instance called authClient. The JSON configuration app/src/main/res/raw/native_auth_sample_app_config.json file is passed as parameter. For more information about SDK instance, see Tutorial: Prepare your Android app for native authentication
- Search the GitHub issues in the repository - your problem might already have been reported or have an answer.
- Nothing similar? Open an issue that clearly explains the problem you're having running the sample app.
This project has adopted the Microsoft Open Source Code of Conduct. For more information, see the Code of Conduct FAQ or contact opencode@microsoft.com with any additional questions or comments.