From 226d0f2b66d1c57070bcdc9293c9238200c20a97 Mon Sep 17 00:00:00 2001
From: Adam <103067949+AdamL-Microsoft@users.noreply.github.com>
Date: Tue, 25 Jul 2023 15:04:08 -0700
Subject: [PATCH] Update redirect URI if deployment uses a custom domain
 (#3341)

---
 src/deployment/deploy.py | 9 ++++++++-
 1 file changed, 8 insertions(+), 1 deletion(-)

diff --git a/src/deployment/deploy.py b/src/deployment/deploy.py
index 035931572..ca28b92ae 100644
--- a/src/deployment/deploy.py
+++ b/src/deployment/deploy.py
@@ -536,6 +536,13 @@ class Client:
     ) -> Dict[str, Any]:
         logger.info("creating Application registration")
 
+        appRegRedirectUris = [f"{self.get_instance_url()}/.auth/login/aad/callback"]
+
+        if self.custom_domain:
+            appRegRedirectUris.append(
+                f"https://{self.custom_domain}/.auth/login/aad/callback"
+            )
+
         params = {
             "displayName": self.application_name,
             "identifierUris": [self.get_identifier_url()],
@@ -560,7 +567,7 @@ class Client:
                     "enableAccessTokenIssuance": False,
                     "enableIdTokenIssuance": True,
                 },
-                "redirectUris": [f"{self.get_instance_url()}/.auth/login/aad/callback"],
+                "redirectUris": appRegRedirectUris,
             },
             "requiredResourceAccess": [
                 {