Azure-Samples · spetrescu84 · May 26, 2026 · May 27, 2026 · May 27, 2026 · May 28, 2026
diff --git a/app/src/main/java/com/azuresamples/msalnativeauthandroidkotlinsampleapp/AuthClient.kt b/app/src/main/java/com/azuresamples/msalnativeauthandroidkotlinsampleapp/AuthClient.kt
@@ -6,27 +6,47 @@ import android.util.Log
 import com.microsoft.identity.client.Logger
 import com.microsoft.identity.client.PublicClientApplication
 import com.microsoft.identity.nativeauth.INativeAuthPublicClientApplication
+import com.microsoft.identity.nativeauth.NativeAuthPublicClientApplicationParameters
 
 object AuthClient : Application() {
     private lateinit var authClient: INativeAuthPublicClientApplication
 
+    const val EXTRA_CLIENT_ID = "native_auth_client_id"
+    const val EXTRA_AUTHORITY_URL = "native_auth_authority_url"
+
     @JvmStatic
     fun getAuthClient(): INativeAuthPublicClientApplication {
         return authClient
     }
 
+    // Initialize the auth client with the provided clientId and authorityUrl, or with the default config file if they are not provided.
     @JvmStatic
-    fun initialize(context: Context) {
+    fun initialize(context: Context, clientId: String? = null, authorityUrl: String? = null) {
         Logger.getInstance().setExternalLogger { tag, logLevel, message, containsPII ->
             Log.e(
                 "MSAL",
                 "$tag $logLevel $message"
             )
         }
 
-        authClient = PublicClientApplication.createNativeAuthPublicClientApplication(
-            context,
-            R.raw.auth_config_native_auth
-        )
+        // If clientId and authorityUrl are provided, create the auth client with the provided values. Otherwise, create the auth client with the default config file.
+        if (clientId != null && authorityUrl != null) {
+            val parameters = NativeAuthPublicClientApplicationParameters(
+                clientId = clientId,
+                authorityUrl = authorityUrl,
+                challengeTypes = listOf("oob", "password")
+            )
+            parameters.capabilities = listOf("mfa_required", "registration_required")
+
+            authClient = PublicClientApplication.createNativeAuthPublicClientApplication(
+                context,
+                parameters
+            )
+        } else {
+            authClient = PublicClientApplication.createNativeAuthPublicClientApplication(
+                context,
+                R.raw.auth_config_native_auth
+            )
+        }
     }
 }
diff --git a/...om/azuresamples/msalnativeauthandroidkotlinsampleapp/EmailPasswordSignInSignUpFragment.kt b/...om/azuresamples/msalnativeauthandroidkotlinsampleapp/EmailPasswordSignInSignUpFragment.kt
@@ -9,8 +9,7 @@ import android.widget.Toast
 import androidx.fragment.app.Fragment
 import com.azuresamples.msalnativeauthandroidkotlinsampleapp.databinding.FragmentEmailPasswordBinding
 import com.microsoft.identity.client.PublicClientApplication
-import com.microsoft.identity.common.java.nativeauth.providers.NativeAuthRequestInterceptor
-import com.microsoft.identity.common.java.util.StringUtil
+import com.microsoft.identity.nativeauth.NativeAuthRequestInterceptor
 import com.microsoft.identity.nativeauth.INativeAuthPublicClientApplication
 import com.microsoft.identity.nativeauth.NativeAuthPublicClientApplicationConfiguration
 import com.microsoft.identity.nativeauth.parameters.NativeAuthGetAccessTokenParameters
@@ -120,7 +119,7 @@ class EmailPasswordSignInSignUpFragment : Fragment(), NativeAuthRequestIntercept
             val actionResult: SignInResult = authClient.signIn(parameters)
 
             binding.passwordText.text?.clear()
-            StringUtil.overwriteWithNull(password)
+            password.fill('\u0000')
 
             when (actionResult) {
                 is SignInResult.Complete -> {
@@ -160,7 +159,7 @@ class EmailPasswordSignInSignUpFragment : Fragment(), NativeAuthRequestIntercept
             val actionResult: SignUpResult = authClient.signUp(parameters)
 
             binding.passwordText.text?.clear()
-            StringUtil.overwriteWithNull(password)
+            password.fill('\u0000')
 
             when (actionResult) {
                 is SignUpResult.CodeRequired -> {

diff --git a/app/src/main/java/com/azuresamples/msalnativeauthandroidkotlinsampleapp/MFAFragment.kt b/app/src/main/java/com/azuresamples/msalnativeauthandroidkotlinsampleapp/MFAFragment.kt
@@ -10,7 +10,6 @@ import androidx.appcompat.app.AppCompatActivity
 import androidx.fragment.app.Fragment
 import com.azuresamples.msalnativeauthandroidkotlinsampleapp.databinding.FragmentEmailPasswordBinding
 import com.microsoft.identity.client.claims.ClaimsRequest
-import com.microsoft.identity.common.java.util.StringUtil
 import com.microsoft.identity.nativeauth.AuthMethod
 import com.microsoft.identity.nativeauth.INativeAuthPublicClientApplication
 import com.microsoft.identity.nativeauth.parameters.NativeAuthGetAccessTokenParameters
@@ -102,7 +101,7 @@ class MFAFragment : Fragment() {
             parameters.password = password
             val actionResult: SignInResult = authClient.signIn(parameters)
             binding.passwordText.text?.clear()
-            StringUtil.overwriteWithNull(password)
+            password.fill('\u0000')
 
             when (actionResult) {
                 is SignInResult.Complete -> {

diff --git a/app/src/main/java/com/azuresamples/msalnativeauthandroidkotlinsampleapp/MainActivity.kt b/app/src/main/java/com/azuresamples/msalnativeauthandroidkotlinsampleapp/MainActivity.kt
@@ -18,7 +18,9 @@ class MainActivity : AppCompatActivity() {
         val binding = ActivityMainBinding.inflate(layoutInflater)
         setContentView(binding.root)
 
-        AuthClient.initialize(this@MainActivity)
+        val clientId = intent.getStringExtra(AuthClient.EXTRA_CLIENT_ID)
+        val authorityUrl = intent.getStringExtra(AuthClient.EXTRA_AUTHORITY_URL)
+        AuthClient.initialize(this@MainActivity, clientId, authorityUrl)
 
         val emailSignInSignUpFragment = EmailSignInSignUpFragment()
         val emailPasswordSignInSignUpFragment = EmailPasswordSignInSignUpFragment()

diff --git a/...in/java/com/azuresamples/msalnativeauthandroidkotlinsampleapp/SignUpAttributesFragment.kt b/...in/java/com/azuresamples/msalnativeauthandroidkotlinsampleapp/SignUpAttributesFragment.kt
@@ -56,10 +56,8 @@ class SignUpAttributesFragment : Fragment() {
 
     private fun submitAttributes() {
         CoroutineScope(Dispatchers.Main).launch {
-            val username = binding.usernameText.text.toString()
 
             val attributes = UserAttributes.Builder()
-                .flatUsername(username)
                 .build()
 
             val actionResult = currentState.submitAttributes(attributes)

diff --git a/...src/main/java/com/azuresamples/msalnativeauthandroidkotlinsampleapp/SignUpCodeFragment.kt b/...src/main/java/com/azuresamples/msalnativeauthandroidkotlinsampleapp/SignUpCodeFragment.kt
@@ -72,7 +72,7 @@ class SignUpCodeFragment : Fragment() {
                 is SignUpResult.AttributesRequired -> {
                     // Custom implementation for Flat Username / Alias
                     if (actionResult.requiredAttributes.size == 1 &&
-                        actionResult.requiredAttributes.any { it.name == "flatusername" }
+                        actionResult.requiredAttributes.any { it.attributeName == "flatusername" }
                     ) {
                         navigateToAttributes(
                             nextState = actionResult.nextState