Sadly, Microsoft has retired the ADFSHelp site, and with it, the Claims X-Ray application.
It looks like the official replacement is the Gallery App called Microsoft Entra SAML Toolkit. Unfortunately, it requires a registration to trust your incoming token, instead of trusting all like Claims X-Ray did.
For OIDC/OAuth Microsoft offers https://jwt.ms. With instructions at Configure OIDC SSO for gallery and custom applications - Microsoft Entra ID | Microsoft Learn to configure a sample app registration. The launcher URL follows this pattern:
https://login.microsoftonline.com/{tenant}/oauth2/v2.0/authorize?client_id={client_id}&response_type=id_token&redirect_uri=https://jwt.ms&scope=openid&nonce={random_value}
There are also some third-party offerings that provide a solution similar to Claims X-Ray.
There is a Microsoft employee unofficially providing a Claims X-Ray replacement at https://claimsxray.net/
Another is RSA and their SAML 2.0 Test Service Provider at https://sptest.iamshowcase.com/.
Posts
