Closed bcallaghan-fri closed 5 years ago
https://login.microsoftonline.com/organizations
is 100% invalid and the error you're getting comes from microsoft, echoed by this library.
https://login.microsoftonline.com/organizations/v2.0
works but will likely need a patch similar to common
to allow the Azure AD multi-tenancy issuer validation relaxed.
https://login.microsoftonline.com/common
is also the old azure issuer, you want to be using https://login.microsoftonline.com/common/v2.0
.
Thanks for the fast response. Adding /v2.0
to the end of the authority fixed the problem.
Describe the bug
Attempting to use the authority https://login.microsoftonline.com/organizations results in the following error.
Changing the authority to https://login.microsoftonline.com/common fixes the issue. Both authorities work with MSAL.js.
To Reproduce Issuer and Client configuration: (inline or gist) - Don't forget to redact your secrets.
Expected behaviour The "organizations" tenant should be usable as documented at MSDN.
Environment:
openid-client version: 3.2.1
node version: 12.0.0 (Electron 6.0.0-beta.13)
[x] the bug is happening on latest openid-client too.
[x] i have searched the issues tracker on github for similar issues and couldn't find anything related.