com.microsoft.aad.adal

Class AuthenticationContext

java.lang.Object

com.microsoft.aad.adal.AuthenticationContext

public class AuthenticationContext
extends java.lang.Object

ADAL context to get access token, refresh token, and lookup from cache.

Constructor Summary

Constructors

Constructor and Description
AuthenticationContext(android.content.Context appContext, java.lang.String authority, boolean validateAuthority) Constructs context to use with known authority to get the token.
AuthenticationContext(android.content.Context appContext, java.lang.String authority, boolean validateAuthority, ITokenCacheStore tokenCacheStore) Constructs context to use with known authority to get the token.
AuthenticationContext(android.content.Context appContext, java.lang.String authority, ITokenCacheStore tokenCacheStore) It will verify the authority and use the given cache.

Method Summary

Modifier and Type	Method and Description
void	acquireToken(android.app.Activity activity, java.lang.String resource, java.lang.String clientId, java.lang.String redirectUri, PromptBehavior prompt, AuthenticationCallback<AuthenticationResult> callback) acquireToken will start interactive flow if needed.
void	acquireToken(android.app.Activity activity, java.lang.String resource, java.lang.String clientId, java.lang.String redirectUri, PromptBehavior prompt, java.lang.String extraQueryParameters, AuthenticationCallback<AuthenticationResult> callback) acquireToken will start interactive flow if needed.
void	acquireToken(android.app.Activity activity, java.lang.String resource, java.lang.String clientId, java.lang.String redirectUri, java.lang.String loginHint, AuthenticationCallback<AuthenticationResult> callback) acquireToken will start interactive flow if needed.
void	acquireToken(android.app.Activity activity, java.lang.String resource, java.lang.String clientId, java.lang.String redirectUri, java.lang.String loginHint, PromptBehavior prompt, java.lang.String extraQueryParameters, AuthenticationCallback<AuthenticationResult> callback) acquireToken will start interactive flow if needed.
void	acquireToken(android.app.Activity activity, java.lang.String resource, java.lang.String clientId, java.lang.String redirectUri, java.lang.String loginHint, PromptBehavior prompt, java.lang.String extraQueryParameters, java.lang.String claims, AuthenticationCallback<AuthenticationResult> callback) acquireToken will start an interactive auth flow to acquire new tokens with the requested claims.
void	acquireToken(android.app.Activity activity, java.lang.String resource, java.lang.String clientId, java.lang.String redirectUri, java.lang.String loginHint, java.lang.String extraQueryParameters, AuthenticationCallback<AuthenticationResult> callback) acquireToken will start interactive flow if needed.
void	acquireToken(IWindowComponent fragment, java.lang.String resource, java.lang.String clientId, java.lang.String redirectUri, java.lang.String loginHint, PromptBehavior prompt, java.lang.String extraQueryParameters, AuthenticationCallback<AuthenticationResult> callback) It will start interactive flow if needed.
void	acquireToken(IWindowComponent fragment, java.lang.String resource, java.lang.String clientId, java.lang.String redirectUri, java.lang.String loginHint, PromptBehavior prompt, java.lang.String extraQueryParameters, java.lang.String claims, AuthenticationCallback<AuthenticationResult> callback) acquireToken will start an interactive auth flow to acquire new tokens with the requested claims.
void	acquireToken(java.lang.String resource, java.lang.String clientId, java.lang.String redirectUri, java.lang.String loginHint, PromptBehavior prompt, java.lang.String extraQueryParameters, AuthenticationCallback<AuthenticationResult> callback) acquireToken will authorize an end user to call the specified resource.
void	acquireToken(java.lang.String resource, java.lang.String clientId, java.lang.String redirectUri, java.lang.String loginHint, PromptBehavior prompt, java.lang.String extraQueryParameters, java.lang.String claims, AuthenticationCallback<AuthenticationResult> callback) acquireToken will authorize an end user to call the specified resource.
void	acquireTokenByRefreshToken(java.lang.String refreshToken, java.lang.String clientId, AuthenticationCallback<AuthenticationResult> callback) Deprecated. acquireTokenByRefreshToken(String, String, AuthenticationCallback) will be removed from the next major release. We don't recommend developers taking dependency on refresh token, ADAL will handle the cache lookup, and refresh the RT if necessary.
void	acquireTokenByRefreshToken(java.lang.String refreshToken, java.lang.String clientId, java.lang.String resource, AuthenticationCallback<AuthenticationResult> callback) Deprecated. acquireTokenByRefreshToken(String, String, AuthenticationCallback) will be removed from the next major release. We don't recommend developers taking dependency on refresh token, ADAL will handle the cache lookup, and refresh the RT if necessary.
java.util.concurrent.Future<AuthenticationResult>	acquireTokenSilent(java.lang.String resource, java.lang.String clientId, java.lang.String userId, AuthenticationCallback<AuthenticationResult> callback) Deprecated. Use the acquireTokenSilentAsync(java.lang.String, java.lang.String, java.lang.String, com.microsoft.aad.adal.AuthenticationCallback<com.microsoft.aad.adal.AuthenticationResult>) method.
void	acquireTokenSilentAsync(java.lang.String resource, java.lang.String clientId, java.lang.String userId, AuthenticationCallback<AuthenticationResult> callback) The function will first look at the cache and automatically checks for the token expiration.
void	acquireTokenSilentAsync(java.lang.String resource, java.lang.String clientId, java.lang.String userId, boolean forceRefresh, AuthenticationCallback<AuthenticationResult> callback) The function will first look at the cache and automatically checks for the token expiration.
void	acquireTokenSilentAsync(java.lang.String resource, java.lang.String clientId, java.lang.String userId, java.lang.String claims, AuthenticationCallback<AuthenticationResult> callback) The function will first look at the cache and automatically checks for the token expiration.
AuthenticationResult	acquireTokenSilentSync(java.lang.String resource, java.lang.String clientId, java.lang.String userId) This is sync function.
AuthenticationResult	acquireTokenSilentSync(java.lang.String resource, java.lang.String clientId, java.lang.String userId, boolean forceRefresh) This is sync function.
AuthenticationResult	acquireTokenSilentSync(java.lang.String resource, java.lang.String clientId, java.lang.String userId, java.lang.String claims) This is sync function.
boolean	cancelAuthenticationActivity(int requestId) Active authentication activity can be cancelled if it exists.
java.lang.String	getAuthority() Gets authority that is used for this object of AuthenticationContext.
java.lang.String	getBrokerUser() Gets username for current broker user.
UserInfo[]	getBrokerUsers() Gets user info from broker.
ITokenCacheStore	getCache() Returns referenced cache.
java.util.List<java.lang.String>	getClientCapabilites()
boolean	getExtendedLifetimeEnabled() Gets if the ExtendedLifetime mode is enabled.
java.lang.String	getRedirectUriForBroker() Get expected redirect Uri for your app to use in broker.
java.util.UUID	getRequestCorrelationId() Get the CorrelationId set by user.
boolean	getValidateAuthority()
static java.lang.String	getVersionName() Version name for ADAL not for the app itself.
static java.lang.String	mergeClaimsWithClientCapabilities(java.lang.String claims, java.util.List<java.lang.String> clientCapabilities) Util method to merge
void	onActivityResult(int requestCode, int resultCode, android.content.Intent data) This method wraps the implementation for onActivityResult at the related Activity class.
void	setClientCapabilites(java.util.List<java.lang.String> clientCapabilites)
void	setExtendedLifetimeEnabled(boolean extendedLifetimeEnabled) The client need to set the flag to true explicitly to enable the ExtendedLifetime mode The default value of flag is false.
void	setRequestCorrelationId(java.util.UUID requestCorrelationId) Set CorrelationId to requests.

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Detail

AuthenticationContext

public AuthenticationContext(android.content.Context appContext,
                             java.lang.String authority,
                             boolean validateAuthority)

Constructs context to use with known authority to get the token. It uses default cache that stores encrypted tokens.

Parameters:

appContext - It needs to have handle to the Context to use the SharedPreferencesFileManager as a Default cache storage. It does not need to be activity.

authority - Authority url to send code and token requests

validateAuthority - validate authority before sending token request

AuthenticationContext

public AuthenticationContext(android.content.Context appContext,
                             java.lang.String authority,
                             boolean validateAuthority,
                             ITokenCacheStore tokenCacheStore)

Constructs context to use with known authority to get the token. It uses provided cache.

Parameters:

appContext - Context

authority - Authority Url

validateAuthority - true/false for validation

tokenCacheStore - Set to null if you don't want cache.

AuthenticationContext

public AuthenticationContext(android.content.Context appContext,
                             java.lang.String authority,
                             ITokenCacheStore tokenCacheStore)

It will verify the authority and use the given cache. If cache is null, it will not use cache.

Parameters:

appContext - Context

authority - Authority Url

tokenCacheStore - Cache ITokenCacheStore used to store tokens. Set to null if you don't want cache.

Method Detail

getCache

public ITokenCacheStore getCache()

Returns referenced cache. You can use default cache, which uses SharedPreferencesFileManager and handles synchronization by itself.

Returns:

ITokenCacheStore Current cache used

getExtendedLifetimeEnabled

public boolean getExtendedLifetimeEnabled()

Gets if the ExtendedLifetime mode is enabled.

Returns:

True when ExtendedLifetime mode is enabled

setExtendedLifetimeEnabled

public void setExtendedLifetimeEnabled(boolean extendedLifetimeEnabled)

The client need to set the flag to true explicitly to enable the ExtendedLifetime mode The default value of flag is false. ADAL will return the stale token when ExtendedLifetime mode is enabled and the server is down

Parameters:

extendedLifetimeEnabled - true if the ExtendedLifetime mode is on, false otherwise

getAuthority

public java.lang.String getAuthority()

Gets authority that is used for this object of AuthenticationContext.

Returns:

Authority

getValidateAuthority

public boolean getValidateAuthority()

Returns:

True If developer turn on the authority validation, false otherwise.

getBrokerUser

public java.lang.String getBrokerUser()

Gets username for current broker user.

Returns:

Username

getBrokerUsers

public UserInfo[] getBrokerUsers()
                          throws android.accounts.OperationCanceledException,
                                 android.accounts.AuthenticatorException,
                                 java.io.IOException

Gets user info from broker. This should not be called on main thread.

Returns:

An array of UserInfo that haven been authenticated via broker(can be null).

Throws:

java.io.IOException - if the broker returned an error response that indicates that it encountered an IOException while communicating with the authentication server.

android.accounts.AuthenticatorException - if there was an error communicating with the authenticator or if the authenticator returned an invalid response.

android.accounts.OperationCanceledException - if the request was canceled for any reason.

getRedirectUriForBroker

public java.lang.String getRedirectUriForBroker()

Get expected redirect Uri for your app to use in broker. You need to register this redirectUri in order to get token from Broker.

Returns:

RedirectUri string to use for broker requests.

acquireToken

public void acquireToken(android.app.Activity activity,
                         java.lang.String resource,
                         java.lang.String clientId,
                         @Nullable
                         java.lang.String redirectUri,
                         @Nullable
                         java.lang.String loginHint,
                         AuthenticationCallback<AuthenticationResult> callback)

acquireToken will start interactive flow if needed. It checks the cache to return existing result if not expired. It tries to use refresh token if available. If it fails to get token with refresh token, it will remove this refresh token from cache and start authentication.

Parameters:

activity - required to launch authentication activity.

resource - required resource identifier.

clientId - required client identifier

redirectUri - Optional. It will use package name info if not provided.

loginHint - login hint (optional if validateAuthority == false)

callback - required

acquireToken

public void acquireToken(android.app.Activity activity,
                         java.lang.String resource,
                         java.lang.String clientId,
                         @Nullable
                         java.lang.String redirectUri,
                         @Nullable
                         java.lang.String loginHint,
                         @Nullable
                         java.lang.String extraQueryParameters,
                         AuthenticationCallback<AuthenticationResult> callback)

acquireToken will start interactive flow if needed. It checks the cache to return existing result if not expired. It tries to use the refresh token if available. If it fails to get token with refresh token, it will remove this refresh token from cache and fall back on the UI.

Parameters:

activity - Calling activity

resource - required resource identifier.

clientId - required client identifier

redirectUri - Optional. It will use packagename and provided suffix for this.

loginHint - Optional if validateAuthority == null. This parameter will be used to pre-populate the username field in the authentication form. Please note that the end user can still edit the username field and authenticate as a different user.

extraQueryParameters - Optional. This parameter will be appended as is to the query string in the HTTP authentication request to the authority. The parameter can be null.

callback - required AuthenticationCallback object for async call.

acquireToken

public void acquireToken(android.app.Activity activity,
                         java.lang.String resource,
                         java.lang.String clientId,
                         @Nullable
                         java.lang.String redirectUri,
                         @Nullable
                         PromptBehavior prompt,
                         AuthenticationCallback<AuthenticationResult> callback)

acquireToken will start interactive flow if needed. It checks the cache to return existing result if not expired. It tries to use refresh token if available. If it fails to get token with refresh token, behavior will depend on options. If PromptBehavior is AUTO, it will remove this refresh token from cache and fall back on the UI. Default is AUTO. if PromptBehavior is Always, it will display prompt screen.

Parameters:

activity - Calling activity

resource - required resource identifier.

clientId - required client identifier.

redirectUri - Optional. It will use packagename and provided suffix for this.

prompt - Optional. PromptBehavior added as query parameter to authorization url

callback - required AuthenticationCallback object for async call.

acquireToken

public void acquireToken(android.app.Activity activity,
                         java.lang.String resource,
                         java.lang.String clientId,
                         @Nullable
                         java.lang.String redirectUri,
                         @Nullable
                         PromptBehavior prompt,
                         @Nullable
                         java.lang.String extraQueryParameters,
                         AuthenticationCallback<AuthenticationResult> callback)

acquireToken will start interactive flow if needed. It checks the cache to return existing result if not expired. It tries to use refresh token if available. If it fails to get token with refresh token, behavior will depend on options. If promptbehavior is AUTO, it will remove this refresh token from cache and fall back on the UI if activitycontext is not null. Default is AUTO.

Parameters:

activity - Calling activity

resource - required resource identifier.

clientId - required client identifier.

redirectUri - Optional. It will use packagename and provided suffix for this.

prompt - Optional. added as query parameter to authorization url

extraQueryParameters - Optional. added to authorization url

callback - required AuthenticationCallback object for async call.

acquireToken

public void acquireToken(android.app.Activity activity,
                         java.lang.String resource,
                         java.lang.String clientId,
                         @Nullable
                         java.lang.String redirectUri,
                         @Nullable
                         java.lang.String loginHint,
                         @Nullable
                         PromptBehavior prompt,
                         @Nullable
                         java.lang.String extraQueryParameters,
                         AuthenticationCallback<AuthenticationResult> callback)

acquireToken will start interactive flow if needed. It checks the cache to return existing result if not expired. It tries to use refresh token if available. If it fails to get token with refresh token, behavior will depend on options. If promptbehavior is AUTO, it will remove this refresh token from cache and fall back on the UI if activitycontext is not null. Default is AUTO.

Parameters:

activity - Calling activity

resource - required resource identifier.

clientId - required client identifier.

redirectUri - Optional. It will use packagename and provided suffix for this.

loginHint - Optional if validateAuthority == null. It is used for cache and as a loginhint at authentication.

prompt - Optional. added as query parameter to authorization url

extraQueryParameters - Optional. added to authorization url

callback - required AuthenticationCallback object for async call.

acquireToken

public void acquireToken(android.app.Activity activity,
                         java.lang.String resource,
                         java.lang.String clientId,
                         @Nullable
                         java.lang.String redirectUri,
                         @Nullable
                         java.lang.String loginHint,
                         @Nullable
                         PromptBehavior prompt,
                         @Nullable
                         java.lang.String extraQueryParameters,
                         @Nullable
                         java.lang.String claims,
                         AuthenticationCallback<AuthenticationResult> callback)

acquireToken will start an interactive auth flow to acquire new tokens with the requested claims. Bypasses token cache if promptbehavior is not AUTO or claims are passed.

Parameters:

activity - Calling activity

resource - required resource identifier.

clientId - required client identifier.

redirectUri - Optional. It will use packagename and provided suffix for this.

loginHint - Optional if validateAuthority == null. It is used for cache and as a loginhint at authentication.

prompt - Optional. added as query parameter to authorization url

extraQueryParameters - Optional. added to authorization url

claims - Optional. The claims challenge returned from middle tier service, will be added as query string to authorize endpoint.

callback - required AuthenticationCallback object for async call.

acquireToken

public void acquireToken(IWindowComponent fragment,
                         java.lang.String resource,
                         java.lang.String clientId,
                         @Nullable
                         java.lang.String redirectUri,
                         @Nullable
                         java.lang.String loginHint,
                         @Nullable
                         PromptBehavior prompt,
                         @Nullable
                         java.lang.String extraQueryParameters,
                         AuthenticationCallback<AuthenticationResult> callback)

It will start interactive flow if needed. It checks the cache to return existing result if not expired. It tries to use refresh token if available. If it fails to get token with refresh token, behavior will depend on options. If promptbehavior is AUTO, it will remove this refresh token from cache and fall back on the UI. Default is AUTO.

Parameters:

fragment - It accepts both type of fragments.

resource - required resource identifier.

clientId - required client identifier.

redirectUri - Optional. It will use packagename and provided suffix for this.

loginHint - Optional if validateAuthority == null. It is used for cache and as a loginhint at authentication.

prompt - Optional. added as query parameter to authorization url

extraQueryParameters - Optional. added to authorization url

callback - required AuthenticationCallback object for async call.

acquireToken

public void acquireToken(IWindowComponent fragment,
                         java.lang.String resource,
                         java.lang.String clientId,
                         @Nullable
                         java.lang.String redirectUri,
                         @Nullable
                         java.lang.String loginHint,
                         @Nullable
                         PromptBehavior prompt,
                         @Nullable
                         java.lang.String extraQueryParameters,
                         @Nullable
                         java.lang.String claims,
                         AuthenticationCallback<AuthenticationResult> callback)

acquireToken will start an interactive auth flow to acquire new tokens with the requested claims. Bypasses token cache if promptbehavior is not AUTO or claims are passed.

Parameters:

fragment - It accepts both type of fragments.

resource - required resource identifier.

clientId - required client identifier.

redirectUri - Optional. It will use packagename and provided suffix for this.

loginHint - Optional if validateAuthority == null. It is used for cache and as a loginhint at authentication.

prompt - Optional. added as query parameter to authorization url

extraQueryParameters - Optional. added to authorization url

claims - Optional. The claims challenge returned from middle tier service, will be added as query string to authorize endpoint.

callback - required AuthenticationCallback object for async call.

acquireToken

public void acquireToken(java.lang.String resource,
                         java.lang.String clientId,
                         @Nullable
                         java.lang.String redirectUri,
                         @Nullable
                         java.lang.String loginHint,
                         @Nullable
                         PromptBehavior prompt,
                         @Nullable
                         java.lang.String extraQueryParameters,
                         AuthenticationCallback<AuthenticationResult> callback)

acquireToken will authorize an end user to call the specified resource. The access token returned from the STS will be sent to the AuthenticationCallback and can be used to call the specified protected resource. By default, acquireToken will attempt to fulfill the request silently, and perform an interactive login if needed or explicitly specified in the request. This overload uses an [AlertDialog](https://developer.android.com/guide/topics/ui/dialogs) when user interaction is required. This overload does not support any flow requiring a [token broker](https://github.com/AzureAD/azure-activedirectory-library-for-android/wiki/Broker).

Parameters:

resource - required resource identifier.

clientId - required client identifier.

redirectUri - Optional. It will use packagename and provided suffix for this.

loginHint - Optional if validateAuthority == null. It is used for cache and as a loginhint at authentication.

prompt - Optional. added as query parameter to authorization url

extraQueryParameters - Optional. added to authorization url

callback - required AuthenticationCallback object for async call.

acquireToken

public void acquireToken(java.lang.String resource,
                         java.lang.String clientId,
                         @Nullable
                         java.lang.String redirectUri,
                         @Nullable
                         java.lang.String loginHint,
                         @Nullable
                         PromptBehavior prompt,
                         @Nullable
                         java.lang.String extraQueryParameters,
                         @Nullable
                         java.lang.String claims,
                         AuthenticationCallback<AuthenticationResult> callback)

acquireToken will authorize an end user to call the specified resource. The access token returned from the STS will be sent to the AuthenticationCallback and can be used to call the specified protected resource. Bypasses token cache if @param prompt is not AUTO or claims are passed. This overload uses an [AlertDialog](https://developer.android.com/guide/topics/ui/dialogs) when user interaction is required. This overload does not support any flow requiring a [token broker](https://github.com/AzureAD/azure-activedirectory-library-for-android/wiki/Broker).

Parameters:

resource - required resource identifier.

clientId - required client identifier.

redirectUri - Optional. It will use packagename and provided suffix for this.

loginHint - Optional if validateAuthority == null. It is used for cache and as a loginhint at authentication.

prompt - Optional. added as query parameter to authorization url

extraQueryParameters - Optional. added to authorization url

claims - Optional. The claims challenge returned from middle tier service, will be added as query string to authorize endpoint.

callback - required AuthenticationCallback object for async call.

acquireTokenSilentSync

public AuthenticationResult acquireTokenSilentSync(java.lang.String resource,
                                                   java.lang.String clientId,
                                                   java.lang.String userId)
                                            throws AuthenticationException,
                                                   java.lang.InterruptedException

This is sync function. It will first look at the cache and automatically checks for the token expiration. Additionally, if no suitable access token is found in the cache, but refresh token is available, the function will use the refresh token automatically. This method will not show UI for the user. If prompt is needed, the method will return an exception

Parameters:

resource - required resource identifier.

clientId - required client identifier.

userId - UserID obtained from #getUserInfo()

Returns:

A Future object representing the AuthenticationResult of the call. It contains Access Token,the Access Token's expiration time, Refresh token, and UserInfo.

Throws:

AuthenticationException - If silent request fails to get the token back.

java.lang.InterruptedException - If the main thread is interrupted before or during the activity.

acquireTokenSilentSync

public AuthenticationResult acquireTokenSilentSync(java.lang.String resource,
                                                   java.lang.String clientId,
                                                   java.lang.String userId,
                                                   @Nullable
                                                   java.lang.String claims)
                                            throws AuthenticationException,
                                                   java.lang.InterruptedException

This is sync function. It will first look at the cache and automatically checks for the token expiration. Additionally, if no suitable access token is found in the cache, but refresh token is available, the function will use the refresh token automatically. This method will not show UI for the user. If prompt is needed, the method will return an exception

Parameters:

resource - required resource identifier.

clientId - required client identifier.

userId - UserID obtained from #getUserInfo()

claims - Optional. The claims challenge returned from middle tier service, will be added as query string to authorize endpoint.

Returns:

A Future object representing the AuthenticationResult of the call. It contains Access Token,the Access Token's expiration time, Refresh token, and UserInfo.

Throws:

AuthenticationException - If silent request fails to get the token back.

java.lang.InterruptedException - If the main thread is interrupted before or during the activity.

acquireTokenSilentSync

public AuthenticationResult acquireTokenSilentSync(java.lang.String resource,
                                                   java.lang.String clientId,
                                                   java.lang.String userId,
                                                   boolean forceRefresh)
                                            throws AuthenticationException,
                                                   java.lang.InterruptedException

This is sync function. It will first look at the cache and automatically checks for the token expiration. Additionally, if no suitable access token is found in the cache, but refresh token is available, the function will use the refresh token automatically. This method will not show UI for the user. If prompt is needed, the method will return an exception

Parameters:

resource - required resource identifier.

clientId - required client identifier.

userId - UserID obtained from #getUserInfo()

forceRefresh - when true, access token is renewed using broker if available; otherwise, uses local refresh token

Returns:

A Future object representing the AuthenticationResult of the call. It contains Access Token,the Access Token's expiration time, Refresh token, and UserInfo.

Throws:

AuthenticationException - If silent request fails to get the token back.

java.lang.InterruptedException - If the main thread is interrupted before or during the activity.

acquireTokenSilent

@Deprecated
public java.util.concurrent.Future<AuthenticationResult> acquireTokenSilent(java.lang.String resource,
                                                                                         java.lang.String clientId,
                                                                                         java.lang.String userId,
                                                                                         AuthenticationCallback<AuthenticationResult> callback)

Deprecated. Use the acquireTokenSilentAsync(java.lang.String, java.lang.String, java.lang.String, com.microsoft.aad.adal.AuthenticationCallback<com.microsoft.aad.adal.AuthenticationResult>) method.

The function will first look at the cache and automatically checks for the token expiration. Additionally, if no suitable access token is found in the cache, but refresh token is available, the function will use the refresh token automatically. This method will not show UI for the user. If prompt is needed, the method will return an exception

Parameters:

resource - required resource identifier.

clientId - required client identifier.

userId - UserId obtained from UserInfo inside AuthenticationResult

callback - required AuthenticationCallback object for async call.

Returns:

A Future object representing the AuthenticationResult of the call. It contains Access Token,the Access Token's expiration time, Refresh token, and UserInfo.

acquireTokenSilentAsync

public void acquireTokenSilentAsync(java.lang.String resource,
                                    java.lang.String clientId,
                                    java.lang.String userId,
                                    AuthenticationCallback<AuthenticationResult> callback)

The function will first look at the cache and automatically checks for the token expiration. Additionally, if no suitable access token is found in the cache, but refresh token is available, the function will use the refresh token automatically. This method will not show UI for the user. If prompt is needed, the method will return an exception

Parameters:

resource - required resource identifier.

clientId - required client identifier.

userId - UserId obtained from UserInfo inside AuthenticationResult

callback - required AuthenticationCallback object for async call.

acquireTokenSilentAsync

public void acquireTokenSilentAsync(java.lang.String resource,
                                    java.lang.String clientId,
                                    java.lang.String userId,
                                    boolean forceRefresh,
                                    AuthenticationCallback<AuthenticationResult> callback)

The function will first look at the cache and automatically checks for the token expiration. Additionally, if no suitable access token is found in the cache, but refresh token is available, the function will use the refresh token automatically. This method will not show UI for the user. If prompt is needed, the method will return an exception

Parameters:

resource - required resource identifier.

clientId - required client identifier.

userId - UserId obtained from UserInfo inside AuthenticationResult

forceRefresh - when true, access token is renewed using broker if available; otherwise, uses local refresh token

callback - required AuthenticationCallback object for async call.

acquireTokenSilentAsync

public void acquireTokenSilentAsync(java.lang.String resource,
                                    java.lang.String clientId,
                                    java.lang.String userId,
                                    @Nullable
                                    java.lang.String claims,
                                    AuthenticationCallback<AuthenticationResult> callback)

The function will first look at the cache and automatically checks for the token expiration. Additionally, if no suitable access token is found in the cache, but refresh token is available, the function will use the refresh token automatically. This method will not show UI for the user. If prompt is needed, the method will return an exception

Parameters:

resource - required resource identifier.

clientId - required client identifier.

userId - UserId obtained from UserInfo inside AuthenticationResult

claims - Optional. The claims challenge returned from middle tier service, will be added as query string to authorize endpoint.

callback - required AuthenticationCallback object for async call.

acquireTokenByRefreshToken

@Deprecated
public void acquireTokenByRefreshToken(java.lang.String refreshToken,
                                                    java.lang.String clientId,
                                                    AuthenticationCallback<AuthenticationResult> callback)

Deprecated. acquireTokenByRefreshToken(String, String, AuthenticationCallback) will be removed from the next major release. We don't recommend developers taking dependency on refresh token, ADAL will handle the cache lookup, and refresh the RT if necessary.

acquire token using refresh token if cache is not used. Otherwise, use acquireToken to let the ADAL handle the cache lookup and refresh token request.

Parameters:

refreshToken - Required.

clientId - Required.

callback - Required

acquireTokenByRefreshToken

@Deprecated
public void acquireTokenByRefreshToken(java.lang.String refreshToken,
                                                    java.lang.String clientId,
                                                    java.lang.String resource,
                                                    AuthenticationCallback<AuthenticationResult> callback)

Deprecated. acquireTokenByRefreshToken(String, String, AuthenticationCallback) will be removed from the next major release. We don't recommend developers taking dependency on refresh token, ADAL will handle the cache lookup, and refresh the RT if necessary.

acquire token using refresh token if cache is not used. Otherwise, use acquireToken to let the ADAL handle the cache lookup and refresh token request.

Parameters:

refreshToken - Required.

clientId - Required.

resource - Required resource identifier.

callback - Required

onActivityResult

public void onActivityResult(int requestCode,
                             int resultCode,
                             android.content.Intent data)

This method wraps the implementation for onActivityResult at the related Activity class. This method is called at UI thread.

Parameters:

requestCode - Request code provided at the start of the activity.

resultCode - Result code set from the activity.

data - Intent

cancelAuthenticationActivity

public boolean cancelAuthenticationActivity(int requestId)
                                     throws AuthenticationException

Active authentication activity can be cancelled if it exists. It may not be cancelled if activity is not launched yet. RequestId is the hashcode of your AuthenticationCallback.

Parameters:

requestId - Hash code value of your callback to cancel activity launch

Returns:

true: if there is a valid waiting request and cancel message sent successfully or if no waiting request exists. false: If the request could not be cancelled

Throws:

AuthenticationException - if failed to get the waiting request

getRequestCorrelationId

public java.util.UUID getRequestCorrelationId()

Get the CorrelationId set by user.

Returns:

UUID

setRequestCorrelationId

public void setRequestCorrelationId(java.util.UUID requestCorrelationId)

Set CorrelationId to requests.

Parameters:

requestCorrelationId - The correlation id UUID to be set in the request.

mergeClaimsWithClientCapabilities

public static java.lang.String mergeClaimsWithClientCapabilities(java.lang.String claims,
                                                                 java.util.List<java.lang.String> clientCapabilities)

Util method to merge

Parameters:

claims - input claims passed on acquireToken call

Returns:

merged claims with capabilities

Throws:

org.json.JSONException - if input claims is an invalid JSON Sample input claim : { "userinfo": { "given_name": {"essential": true}, "email": {"essential": true}, }, "id_token": { "auth_time": {"essential": true}, } } Sample capabilities list : [CP1, CP2 CP3] Output merged claims : { "userinfo": { "given_name": { "essential": true }, "email": { "essential": true } }, "id_token": { "auth_time": { "essential": true } }, "access_token": { "xms_cc": { "values": ["CP1", "CP2"] } } }

getVersionName

public static java.lang.String getVersionName()

Version name for ADAL not for the app itself.

Returns:

The current SDK version.

getClientCapabilites

public java.util.List<java.lang.String> getClientCapabilites()

setClientCapabilites

public void setClientCapabilites(java.util.List<java.lang.String> clientCapabilites)