Hi Team,
We have build an application to fetch mails using EWS client services. Have few queries which need clarification from you
Regarding Initial Authorization
We are using below url for Authorization after app registration
EWS_URL = "https://login.windows.net/%s/oauth2/v2.0/authorize?scope=EWS.AccessAsUser.All+offline_access+openid+profile&response_type=code&client_id=%s&prompt=select_account&redirect_uri=%s" -> [ tenentid, clientid, redirecturl ]
and "https://login.microsoftonline.us/organizations/" for building PublicClientApplication.
Does "https://login.windows.net" correctly redirect to respective Token authority based on App Registration portal and based on Azure Native Cloud? or is it better, we explicitly specify the Token authority based on Endpoints mentioned in App Registration page in both cases?
ex : Worldwide - https://login.microsoftonline.com/organizations/
US GCC HIGH - https://login.microsoftonline.us/organizations/
Extend functionality for All Azure Native Clouds
We are planning to extend the application to support other Azure Native Clients and planning to configure below end points to get correct Token authority and EWS endpoints. Is our understanding is correct in identifying these endpoints? Also, do you have a standard recommendation here other than this.

Your help and advice is highly appreciated.
Regards,