adal

问题 I'm having trouble figuring out the purpose of customState and if/how I can utilize it to pass data to the return url. Specifically I wish to route the user back to their original location after being signed in. I thought I could pass the original url to the parameter customState and have it returned back to me in the return url POST , but it appears to be encoded or perhaps replaced with a different value. Here is what I want to achieve: Anonymous user visits /page/protected which requires

问题 I am getting invalid signature while using jwt.io to validate my azure ad access token. My id token, however, validates just fine! I have seen and tried the solutions suggested in Invalid signature while validating Azure ad access token and https://nicksnettravels.builttoroam.com/post/2017/01/24/Verifying-Azure-Active-Directory-JWT-Tokens.aspx but neither works for my access token. The access and Id token is generated via Adal.js: var endpoints = { "https://graph.windows.net": "https://graph

问题 My MEAN stack application is using Azure AD for authentication. I am using “passport-azure-ad” module for web api authentication. Based on post & reply here I understood that If user is already authenticated by client (UI) then for every API call, client will also send token to the server. And then on the server we can use bearer strategy to “Authorize” user’s access to API. Now in my scenario I just wanted to make sure user is authenticated, and if he is then allow him to access API.

问题 Ive created a .NET core web app which is using Azure AD for the identity. This is all working fine as expected and anything I decorate using [Authroize] is protected. I am now wanting to secure one of my API controllers to be accessible from an external service. I followed this tutorial which explains service-service authentication. Service to service auth with Azure AD Using this I have managed to request a token POST https://login.microsoftonline.com/{TENANTID}/oauth2/token grant_type

问题 The authentication used to work for us earlier but has stopped suddenly. We have an app built in Xamamin iOs and have registered the application in Azure AD account, provided the ClientID and redirect URL as specified. But it throws an error when "authContext.AcquireToken" is being called Exception: Microsoft.IdentityModel.Clients.ActiveDirectory.AdalServiceException: AADSTS65005: The client application has requested access to resource 'example.com/'. This request has failed because the

问题 I have registered an APP in Azure to access PBI (with MFA); APP details: Native App (mobile desktop) API Permissions Azure Active Directory Graph (1) User.Read Power Bi Service (1) DataSet.ReadWrite.All I can get the token but when try to run a get request I get error 401. import adal import requests authority_url = 'https://login.windows.net/<tennantID>' resource_url = 'https://analysis.windows.net/powerbi/api' target_url = 'https://api.powerbi.com/v1.0/myorg/groups/<groupID>/datasets'

问题 A have an Azure Website running which connects to an Azure SQL through Entity Framework 6. Everything runs and I'm using standard username/password (sql login) to connect. Now, I would like to switch over to using AAD for authenticating to sql. I already have an AD Application set up for the website. My question is: How do I connect with my cert or clientid/clientSecret? How do I ensure that the SqlAzureExecutionStrategy is still in function Any guidance is much appreciated Thanks! 回答1: There

问题 I've created a Web API which uses Azure Active Directory for its authentication. It uses a multi-tenant AAD. To test it, I also created a console app which uses the ADAL library to authenticate against AAD so I can access my API. In the main AAD tenant all is working well, because I don't need to grant anything. But when accessing the app from a second tenant, I first trigger the admin consent flow (adding a prompt=admin_consent ). But when I exit and open the app again, if I try to login

问题 I met the following issue after dismiss the webveiwcontroller from ADAL programmably, and next time when I re-launch the sign in flow, I was given the following errors: error=Error with code: 13 Domain: ADAuthenticationErrorDomain ProtocolCode:(null) Details:The user is currently prompted for credentials as result of another acquireToken request. Please retry the acquireToken call later.. Inner error details: Error Domain=ADAuthenticationErrorDomain Code=13 "The operation couldn’t be

问题 If I specify a redirect URI in my OpenIdConnectAuthenticationOptions like so app.UseOpenIdConnectAuthentication( new OpenIdConnectAuthenticationOptions { ClientId = clientId, Authority = Authority, PostLogoutRedirectUri = postLogoutRedirectUri, RedirectUri = redirectUri, Notifications = new OpenIdConnectAuthenticationNotifications() { AuthenticationFailed = context => { context.HandleResponse(); context.Response.Redirect("/Error?message=" + context.Exception.Message); return Task.FromResult(0