search

microsoftconnect / intune-app-wrapping-tool-ios

This is the software for the Intune App Wrapping Tool for iOS.
55 stars 12 forks source link

Login .MSALErrorDomain -50000 #72

Closed OmarHassan25 closed 2 years ago

OmarHassan25 commented 2 years ago

Describe the bug: I am unable to log in after wrapping my application, once the user entered the app and selects the account from the authentication broker the app shows an alert that says error.MSALErrorDomain -50000

To Reproduce Steps to reproduce the behavior:

  1. Open the app
  2. Select account from the authenticator
  3. the app displays the error dialog

Expected behavior:

Users can log in normally as happens in the unwrapped application

Screenshots and logs:

Intune app wrapping tool (please complete the following information):

Additional context: The unwrapped app works well as expected

Screenshot

IntuneMAMDiagnosticFiles.txt

gastaffo commented 2 years ago

@OmarHassan25 @abasore That error usually means that the apps MSAL/ADAL settigns are set up correctly. You will need to set up the settings either in the info.plist like described here Microsoft Intune App SDK for iOS developer guide | Microsoft Docs

Or you can configure the settings while wrapping using the command line arguments. “-aa” for ADALAuthority, -ac for ADALClientId, and “-ar” are ADALRedirectURI.

abasore commented 2 years ago

@OmarHassan25 Just adding on to what Garrigan mentioned. This link is for command line arguments to use when wrapping the app: https://docs.microsoft.com/en-us/mem/intune/developer/app-wrapper-prepare-ios#command-line-parameters

This link is for adding the settings to the info.plist: https://docs.microsoft.com/en-us/mem/intune/developer/app-sdk-ios#configure-settings-for-the-intune-app-sdk

OmarHassan25 commented 2 years ago

@OmarHassan25 @abasore That error usually means that the apps MSAL/ADAL settigns are set up correctly. You will need to set up the settings either in the info.plist like described here Microsoft Intune App SDK for iOS developer guide | Microsoft Docs

Or you can configure the settings while wrapping using the command line arguments. “-aa” for ADALAuthority, -ac for ADALClientId, and “-ar” are ADALRedirectURI.

@gastaffo @abasore Thanks a lot for your reply, I am already using the mentioned setiings as an agruments for the waping tool, here is my warpaing tool command,

/Volumes/IntuneMAMAppPackager/IntuneMAMPackager/Contents/MacOS/IntuneMAMPackager -i /Volumes/D/mt/MTSuperMobileApp.ipa -o /Volumes/D/mt/MyApp_Wrapped.ipa -p /Volumes/D/mt/appstore.mobileprovision -c"MY CERT SHA1" -aa https://login.microsoftonline.com/MYtenant_id -ac MY_client_id -ar msauth.BundleID://auth -finishLaunching -v true

Please check and advise what is missing?

Now the admin applied some policies to my account and I am getting a new error as shown in this screenshot,

This is the scenario right now

  1. -Install the wrapped app from the test flight
  2. Open the app, then I am directed to the authentication app
  3. pick an account then I am directed again to my app
  4. Wait for a while check my organization policies then my app gets crashed
  5. open my app again and Wait for a while to check my organization policies I am getting the attached error.

99547

Please check my intune logs IntuneMAMDiagnosticFiles.txt

Thanks

gastaffo commented 2 years ago

@OmarHassan25 Do you have policy assigned to the user? Wrapped apps do not allow unmanaged users.

abasore commented 2 years ago

@OmarHassan25 Just checking in if you were able to assign policy to the user? If so, are you still seeing the app not set up alert?

abasore commented 2 years ago

Closing this issue due to inactivity. @OmarHassan25 Feel free to reopen if issue persists.