Append v2 to endpoint when using a Microsoft authority under OIDC protocol mode

change/@azure-msal-browser-7241828b-7956-4b89-a345-913b05a23ac5.json

@@ -0,0 +1,7 @@
+{
+  "type": "prerelease",
+  "comment": "Throws error when using OIDC protocol mode with a known Microsoft authority",
+  "packageName": "@azure/msal-browser",
+  "email": "[email protected]",
+  "dependentChangeType": "patch"
+}

change/@azure-msal-common-7e065849-b972-405d-ab85-674138d67aa2.json

@@ -0,0 +1,7 @@
+{
+  "type": "prerelease",
+  "comment": "Throws error when using OIDC protocol mode with a known Microsoft authority",
+  "packageName": "@azure/msal-common",
+  "email": "[email protected]",
+  "dependentChangeType": "patch"
+}

lib/msal-browser/src/config/Configuration.ts

@@ -17,7 +17,8 @@ import {
     AzureCloudInstance,
     AzureCloudOptions,
     ApplicationTelemetry,
-    ClientConfigurationError
+    ClientConfigurationError,
+    EndpointMetadata
 } from "@azure/msal-common";
 import { BrowserUtils } from "../utils/BrowserUtils";
 import {
@@ -340,6 +341,14 @@ export function buildConfiguration(
             throw ClientConfigurationError.createCannotAllowNativeBrokerError();
     }
 
+    // Throw an error if using a known Microsoft authority with OIDC compliance mode
+    if(userInputAuth?.authority && userInputAuth?.protocolMode === ProtocolMode.OIDC) {
+        const knownMSAuthorities = Object.keys(EndpointMetadata);
+        if(knownMSAuthorities.includes(userInputAuth.authority)) {
+            throw ClientConfigurationError.createCannotSetOIDCProtocolModeError();
+        }
+    }
+
     const overlayedConfig: BrowserConfiguration = {
         auth: {
             ...DEFAULT_AUTH_OPTIONS, 

lib/msal-browser/test/config/Configuration.spec.ts

@@ -5,7 +5,7 @@ import {
     DEFAULT_IFRAME_TIMEOUT_MS,
 } from "../../src/config/Configuration";
 import { TEST_CONFIG, TEST_URIS } from "../utils/StringConstants";
-import { LogLevel, Constants, AzureCloudInstance, ProtocolMode, ServerResponseType } from "@azure/msal-common";
+import { LogLevel, Constants, AzureCloudInstance, ProtocolMode, ServerResponseType, ClientConfigurationError } from "@azure/msal-common";
 import sinon from "sinon";
 import { BrowserCacheLocation } from "../../src/utils/BrowserConstants";
 
@@ -283,4 +283,20 @@ describe("Configuration.ts Class Unit Tests", () => {
         );
         expect(console.warn).toBeCalled();
     });
+    it("Setting ProtocolMode to OIDC when using a known Microsoft authority throws an error", async () => {
+        expect(() =>
+            buildConfiguration(
+                {
+                    auth: {
+                        clientId: TEST_CONFIG.MSAL_CLIENT_ID,
+                        authority: TEST_CONFIG.validAuthority,
+                        protocolMode: ProtocolMode.OIDC
+                    },
+                },
+                true
+            )
+        ).toThrowError(
+            ClientConfigurationError
+        );
+    });
 });

lib/msal-common/src/index.ts

@@ -47,6 +47,7 @@ export {
 } from "./authority/AuthorityOptions";
 export { AuthorityFactory } from "./authority/AuthorityFactory";
 export { AuthorityType } from "./authority/AuthorityType";
+export { EndpointMetadata } from "./authority/AuthorityMetadata";
 export { ProtocolMode } from "./authority/ProtocolMode";
 export { OIDCOptions } from "./authority/OIDCOptions";
 // Broker