Skip to content

Fix typos and add deployment note for redirect URIs #1953

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Open
minvoker wants to merge 3 commits into
base: main
Choose a base branch
from
Open

Fix typos and add deployment note for redirect URIs #1953

Changes from all commits
Commits
Show all changes
3 commits
Select commit Hold shift + click to select a range
cc7b763
Fix typos and add deployment note for redirect URIs
minvoker Apr 23, 2026
7338623
Apply review suggestions for list formatting
minvoker Apr 23, 2026
b1146cb
Apply suggestions from code review
minvoker Apr 23, 2026
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
10 changes: 7 additions & 3 deletions docs/identity-platform/tutorial-v2-nodejs-webapp-msal.md
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -120,8 +120,12 @@ Fill in these details with the values you obtain from Azure app registration por
> [!WARNING]
> Any plaintext secret in source code poses an increased security risk. This article uses a plaintext client secret for simplicity only. Use [certificate credentials](./certificate-credentials.md) instead of client secrets in your confidential client applications, especially those apps you intend to deploy to production.
- `Enter_the_Graph_Endpoint_Here`: The Microsoft Graph API cloud instance that your app will call. For the main (global) Microsoft Graph API service, enter `https://graph.microsoft.com/` (include the trailing forward-slash).
- `Enter_the_Express_Session_Secret_Here` the secret used to sign the Express session cookie. Choose a random string of characters to replace this string with, such as your client secret.
- `Enter_the_Express_Session_Secret_Here`: The secret used to sign the Express session cookie. Choose a random string of characters to replace this string with, such as your client secret.

> [!IMPORTANT]
> Before deploying this app to Azure App Service or another hosting environment, update `REDIRECT_URI` and `POST_LOGOUT_REDIRECT_URI` to match your deployed application URL.
>
> Also ensure these redirect URIs are configured in your app registration in the Microsoft Entra admin center. Values used for local development, such as `http://localhost:3000/auth/redirect`, won't work after deployment unless your deployed app uses the same URI.

2. Next, create a file named *authConfig.js* in the root of your project for reading in these parameters. Once created, add the following code there:

Expand All @@ -137,11 +141,11 @@ Fill in these details with the values you obtain from Azure app registration por

:::code language="js" source="~/../ms-identity-node/App/routes/auth.js":::

2. Update the *index.js* route by replacing the existing code with the following code snippet:
1. Update the *index.js* route by replacing the existing code with the following code snippet:

:::code language="js" source="~/../ms-identity-node/App/routes/index.js":::

3. Finally, update the *users.js* route by replacing the existing code with the following code snippet:
1. Finally, update the *users.js* route by replacing the existing code with the following code snippet:

:::code language="js" source="~/../ms-identity-node/App/routes/users.js":::

Expand Down