ADAL JS - response_type="token" is not supported

If you are building client-side app, you need to enable Implicit flow from the application manifest.

  "oauth2AllowImplicitFlow": true,

1. Open your application configuration azure portal, and download the manifest file from "Manage Manifest" menu.

2. search for oauth2AllowImplicitFlow and change the value to true.

3. upload the file again through the same menu.

Logout and login again to your app and it will work will a charm.

---

It can also be configured via the Azure AD portal:

• From the application page, click on Authentication, and under Advanced Settings, select the checkboxes next to Access tokens and ID tokens to enable OAuth2 implicit grant for the application.

---

more info about OAuth2 Implicit flow >> link:

The implicit grant type is used for mobile apps and web applications (i.e. applications that run in a web browser), where the client secret confidentiality is not guaranteed...

recreating my webApp fixed the issue. I'm still investigation the root cause with MS. Manifests for two apps aren't different except their AAD Client IDs.

UPDATE

see my comments for resolution