# MS Graph Authentication
## User Authentication
| Script | Function |
| -------------------------------- | ---------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- |
| `GraphConnection::isConnected()` | Will test if a user has a valid token.
Note: Script will return false if the client is offline. Check internet acces before using any GraphConnection features.
|
| | If **GraphConnection** returns **true**, `GraphConnection::getUserId()` will return the token principial name. |
In order to request a new token, you need to proceed the following steps:
1. Start a web browser with the uri returned from `GraphConnection::getAuthorizeUrl(login_hint)`.\
The login\_hint can be a UPN if you know the user's UPN, or "".
2. Check if the browser is redirected to an uri starting with the string returned by `GraphConnection::getResponseUrl()`.
3. Put the redirect uri from the browser to `GraphConnection::setAuthorizationResponse(string ResponseUrl)`.\
If the call succeeds, the user received a valid token.
### Authentication sample
```c++
print("start");
class graphAuthentication
{
def graphAuthentication() {
this.set_explicit(true);
this.browser = gkScript.WebBrowser();
this.graph = gkScript.GraphConnection();
if (this.graph.isConnected()) {
var str = this.graph.getUserId();
this.startPage = "Account OK
Your are logged in as " + str + ".
";
this.responseUrl = "";
}
else {
var str = this.graph.getAuthorizeUrl(""); // we could provide a login hint here...
this.startPage = "Welcome
You need to login.
";
this.responseUrl = this.graph.getResponseUrl();
}
};
def Show() {
this.browser.Show("about:blank", this);
}
def onBeforeNavigate(str) {
gkScript.logDebug("onNavigate called " + str);
if (str == "about:blank") {
if (!this.startPage.empty()) {
gkScript.logDebug("setting startPage " + this.startPage);
this.browser.SetContent(this.startPage);
this.startPage = "";
return false;
}
}
else if (str == "https://localhost/close") {
this.browser.Close();
return false;
}
else if ((str.size() > this.responseUrl.size()) && (this.responseUrl == str.substr(0, this.responseUrl.size()))) {
gkScript.logDebug("checking authorization response...");
if (this.graph.setAuthorizationResponse(str)) {
var user = this.graph.getUserId();
gkScript.logInfo("Graph authorisation succeeded, user is: " + user);
var str = "Login succeeded
Your are logged in as " + user + ".
";
this.browser.SetContent(str);
return false;
}
else {
gkScript.logError("Graph authorisation failed. (" + str + ").");
var str = "Login failed
Please try again later.
";
this.browser.SetContent(str);
return false;
}
}
gkScript.logDebug("opening target");
return true;
}
var browser;
var graph;
var startPage;
var responseUrl;
}
gkScript.setLogLevel(ll_DEBUG);
var ga = graphAuthentication();
ga.Show();
print("end");
```
---
# Agent Instructions: Querying This Documentation
If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.
Perform an HTTP GET request on the current page URL with the `ask` query parameter:
```
GET https://docs.realmigrator.com/script/reference/graph-auth.md?ask=
```
The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.
Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.