npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2025 – Pkg Stats / Ryan Hefner

@chathura_dev/expo-msal

v0.1.15

Published

MSAL (Microsoft Authentication Library) integration for Expo applications

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Git

Maintainers

chathura_devchathura_dev

Keywords

react-nativeexpoexpo-msalExpoMsal

Readme

expo-msal

Modern Expo module for Microsoft Authentication Library (MSAL) built with the Expo Modules API. Works with Azure AD and Azure AD B2C on iOS and Android.

Features

  • Native MSAL SDK integration (Swift/Kotlin)
  • Interactive and silent token acquisition
  • Multi-account support with account change events
  • TypeScript-first API with generated types
  • JSI bridge for performance

Documentation

Android MSAL Documentation

Troubleshooting

General Documentation

Example Files

Install (fresh Expo app)

npm install expo-msal
# or
yarn add expo-msal

# prepare native projects (required once after install or when native config changes)

Azure AD setup

  1. In Azure Portal create an app registration and note clientId and tenantId (Directory ID).
  2. Add redirect URIs:
    • iOS: msauth.<your.bundle.id>://auth
    • Android: msauth://<your.package.name>/<YOUR_SIGNATURE_HASH>
  3. Add required scopes (e.g., User.Read) and expose any custom API scopes if needed.

App usage

import { PublicClientApplication, MSALConfiguration } from 'expo-msal';

const config: MSALConfiguration = {
  auth: {
    clientId: '<CLIENT_ID>',
    authority: 'https://login.microsoftonline.com/<TENANT_ID>',
    redirectUri: 'msauth.<your.bundle.id>://auth', // use Android URI on Android
  },
};

const pca = new PublicClientApplication(config);
await pca.init();

const result = await pca.acquireToken({ scopes: ['User.Read'] });
console.log(result.accessToken);

iOS setup (bare or prebuilt)

  1. Add URL schemes and queries to ios/<app>/Info.plist:
<key>CFBundleURLTypes</key>
<array>
    <dict>
        <key>CFBundleURLSchemes</key>
        <array>
            <string>msauth.$(PRODUCT_BUNDLE_IDENTIFIER)</string>
        </array>
    </dict>
</array>
<key>LSApplicationQueriesSchemes</key>
<array>
    <string>msauthv2</string>
    <string>msauthv3</string>
</array>
  1. Install pods:
cd ios && pod install && cd ..
  1. Ensure the redirect URI in Azure matches msauth.<your.bundle.id>://auth.
  2. Build/run: npx expo run:ios.

Android setup (bare or prebuilt)

Step 1: Add required permissions

In android/app/src/main/AndroidManifest.xml, add these permissions before the <application> tag:

<uses-permission android:name="android.permission.INTERNET"/>
<uses-permission android:name="android.permission.ACCESS_NETWORK_STATE"/>

Step 2: Configure BrowserTabActivity

In android/app/src/main/AndroidManifest.xml, inside <application> add the BrowserTabActivity:

IMPORTANT: Do NOT URL encode the signature hash in AndroidManifest.xml (but DO encode it in Azure redirect URI and auth config)

<activity
    android:name="com.microsoft.identity.client.BrowserTabActivity"
    android:exported="true">
    <intent-filter>
        <action android:name="android.intent.action.VIEW" />
        <category android:name="android.intent.category.DEFAULT" />
        <category android:name="android.intent.category.BROWSABLE" />
        <data
            android:scheme="msauth"
            android:host="YOUR_PACKAGE_NAME"
            android:path="/YOUR_BASE64_ENCODED_SIGNATURE" />
    </intent-filter>
</activity>

Example:

<!-- For package: com.example.myapp -->
<!-- With signature hash: abc123XYZ== -->
<data
    android:scheme="msauth"
    android:host="com.example.myapp"
    android:path="/abc123XYZ==" />

Step 3: Add Maven repository

Add the Microsoft Device SDK feed to android/build.gradle (or settings.gradle under dependencyResolutionManagement):

allprojects {
  repositories {
    maven { 
      url 'https://pkgs.dev.azure.com/MicrosoftDeviceSDK/DuoSDK-Public/_packaging/Duo-SDK-Feed/maven/v1' 
    }
  }
}

Step 4: Generate signature hash

For debug builds:

keytool -exportcert -alias androiddebugkey \
  -keystore ~/.android/debug.keystore \
  -storepass android -keypass android | \
  openssl sha1 -binary | openssl base64

For release builds:

keytool -exportcert -alias YOUR_RELEASE_KEY_ALIAS \
  -keystore YOUR_RELEASE_KEY_PATH \
  -storepass YOUR_STORE_PASSWORD -keypass YOUR_KEY_PASSWORD | \
  openssl sha1 -binary | openssl base64

Step 5: Configure redirect URI

In Azure Portal: Use URL-encoded format

msauth://YOUR_PACKAGE_NAME/YOUR_URL_ENCODED_SIGNATURE_HASH

In AndroidManifest.xml: Use plain base64 (NOT URL-encoded)

android:path="/YOUR_BASE64_SIGNATURE"

In app config: Use URL-encoded format (same as Azure)

redirectUri: 'msauth://com.example.myapp/abc123XYZ%3D%3D'

Step 6: Build and run

npx expo run:android

Note: The package name comes from context.getPackageName() which matches your build.gradle applicationId.

Common flows

  • Acquire token interactively: pca.acquireToken({ scopes: ['User.Read'] })
  • Silent token: pca.acquireTokenSilent({ scopes, account })
  • List accounts: pca.getAccounts()
  • Sign out: pca.signOut({ account, signoutFromBrowser: true })
  • Account change listener: pca.addAccountChangeListener(cb)

Troubleshooting

Common Issues

  • Redirect fails: verify bundle ID/package name + signature hash exactly match Azure redirect URI.
  • Android missing BrowserTabActivity: confirm manifest entry and rebuild after npx expo prebuild.
  • iOS missing scheme: ensure CFBundleURLTypes and LSApplicationQueriesSchemes are present, then reinstall pods.
  • Keystore changed: regenerate signature hash and update Azure + manifest.
  • "Scopes have been declined": See Scope Troubleshooting Guide for detailed solutions:
    • Verify permissions configured in Azure Portal
    • Grant admin consent if required
    • Check scope format (must be array of strings)
    • Ensure scopes match your authority type (AAD vs B2C)

Requirements

  • iOS 13+
  • Android API 21+
  • Expo SDK 51+
  • React Native 0.70+

License

MIT if (accounts.length > 0) {