Hi Kirill!
That long string you get back from the plugin is actually a JWT (JSON Web Token) and is essentially a hashed signature of the successful authentication. This needs to be validated by Microsoft. I chose to do this for security, although I may revisit this in future versions of the plugin once I understand how the black box of the MSAL library works behind the scenes better. In any case, once you get this string back from SignInUserSilent/SignInUserInteractive, send a GET request to
https://graph.microsoft.com/v1.0/me
with one header
Authorization: <SignInUserSilent.JWT/SignInUserInteractive.JWT (that string you posted)>
You will get back an object that looks something like this:
{
"@odata.context": "https://graph.microsoft.com/v1.0/$metadata#users/$entity",
"businessPhones": [
"+12345678910"
],
"displayName": "Robins, Walter",
"givenName": "Walter",
"jobTitle": "Developer",
"mail": null,
"mobilePhone": null,
"officeLocation": null,
"preferredLanguage": null,
"surname": "Robins",
"userPrincipalName": "wrobins@myemailaddr.com",
"id": "myaccount-guid-1234"
}
You can use that to get your account information. Let me know if that helps you get started or if you have more questions!
Stay safe