This answer describes the difference between MSAL and ADAL in various use cases and contexts (mobile, non mobile)
What are the exact protocol differences between these implementations?
Asked
Active
Viewed 208 times
1
Community
- 1
- 1
makerofthings7
- 60,103
- 53
- 215
- 448
-
Are you looking for a list of protocols that are supported by each of these services? – Gaurav Mantri Mar 25 '17 at 16:57
-
@GauravMantri The fact I'm using a custom library, and not a random library, implies that "passport | liveID | Azure AD | B2C" does more than what OIDC specifies. – makerofthings7 Mar 25 '17 at 17:19
1 Answers
3
Azure AD is available both through ADAL which uses the Azure AD v1 Endpoint and through MSAL which uses the Azure AD v2 Endpoint.
Azure AD B2C is accessible via the v2 endpoint but requires that a policy be indicated.
There are several differences between these. Your best bet is to compare the docs between the protocols/tokens of each:
- v1 endpoint - protocol doc & token doc
- v2 endpoint - protocol doc & token doc
- B2C - protocol doc & token doc
Just to name a few differences:
- v2 endpoint adds an extra
v2.0to the authorization and token endpoint URLs,https://login.microsoftonline.com/common/oauth2/**v2.0**/authorize - v1 has a
resourcequery parameter in the request to the authorization endpoint, v2 and B2C don't, it puts the resources as extra values in the existingscopequery parameter. B2C has the extrapquery string parameter - The token has several differences including the value of the issuer and the name of some of the basic claims.
- v2 doesn't support the on-behalf-of flow yet. See v2 limitations doc as there are other protocol limitations.
Saca
- 10,355
- 1
- 34
- 47