diff --git a/README.md b/README.md
index febe2e7..e8b42e5 100755
--- a/README.md
+++ b/README.md
@@ -84,11 +84,12 @@ new Vue({
* `signOut()`: Sign out an authorized user
* `isAuthenticated()`: Returns `true` if the user has been authenticated and `false` otherwise.
> :grey_exclamation: *Note: This function should not be used for reactivity. In order to **watch** whether the user is authenticated or not you should use the [mixin](#mixin) data properties below.*
-* `acquireToken([request[,retries]])`: Acquire an access token manually.
+* `acquireToken([request[,retries[,storeToken]]])`: Acquire an access token manually.
> :grey_exclamation: *Note: This will also run automatically after the user's successful authentication using the default permissions defined in the `auth.scopes` property of the configuration options. You should however run this manually in case you want to get an access token with more permissions than the default, by adding the new request options as an argument, like this
>`acquireToken({scopes: ["user.read", "another.permission"]})`
>Check the [Request Configuration Options](#request-options) below for more details*.
>You can also pass in a second parameter, with a number of retries in case of an **unexpected** failure (i.e. network errors).
+>The third parameter is a boolean and instructs the library whether to store the token in the $msal object or to simply pass the token back. This defaults to true and allows for token retrieval for non Graph API's protected by AzureAD bearer tokens without requiring to request another token for Graph scopes after use.
* `msGraph(endpoints[,batchUrl])`: Manually call the MS Graph API using the acquired access token.
> :grey_exclamation: *Note: Read the [Calling MS Graph](#calling-ms-graph) section for more details*
* `saveCustomData(key, data)`: You can use this function to add custom data to the selected cache location (set with `cache.cacheLocation` in the [configuration options](#cache-options)), that will be automatically deleted when the user signs out or his access token expires. This should be used, for example, to store any user related data fetched from another API.
diff --git a/lib/plugin.ts b/lib/plugin.ts
index 42426d3..85a5a36 100644
--- a/lib/plugin.ts
+++ b/lib/plugin.ts
@@ -18,7 +18,7 @@ export default class msalPlugin {
signIn() { msal.signIn(); },
async signOut() { await msal.signOut(); },
isAuthenticated() { return msal.isAuthenticated(); },
- async acquireToken(request, retries = 0) { return await msal.acquireToken(request, retries); },
+ async acquireToken(request, retries = 0, storeToken = true) { return await msal.acquireToken(request, retries, storeToken); },
async msGraph(endpoints, batchUrl) { return await msal.msGraph(endpoints, batchUrl) },
saveCustomData(key: string, data: any) { msal.saveCustomData(key, data); }
};
diff --git a/lib/src/main.ts b/lib/src/main.ts
index 4f5f111..4d63aea 100644
--- a/lib/src/main.ts
+++ b/lib/src/main.ts
@@ -119,11 +119,13 @@ export class MSAL implements MSALBasic {
isAuthenticated() {
return !this.lib.isCallback(window.location.hash) && !!this.lib.getAccount();
}
- async acquireToken(request = this.request, retries = 0) {
+ async acquireToken(request = this.request, retries = 0, storeToken = true) {
try {
//Always start with acquireTokenSilent to obtain a token in the signed in user from cache
const response = await this.lib.acquireTokenSilent(request);
- this.handleTokenResponse(null, response);
+ if(storeToken){
+ this.handleTokenResponse(null, response);
+ }
return response;
} catch (error) {
// Upon acquireTokenSilent failure (due to consent or interaction or login required ONLY)