AADSTS9002326: Cross-origin token redemption is permitted only for the ‘Single-Page Application’ client-type. Request origin: ‘http://localhost:3000'

tanut aran
Feb 6, 2023

--

This error occurs when I try to do the Azure Active Directory Sign in in React using @azure/msal-react

The message suggests something to be fixed in the Azure console.

In my case I have a lot of application type and the problem is http://localhost:3000 is duplicated. (Blue and Red Arrow)

This make the Azure Active Directory resolved the redirected URL and config of the wrong type.

Remove the one that outside the ‘Single-page-application’ and here it is good to go.

Hope this help.

--

--