azure-active-directory

问题 I have an Angular 7 application interfacing with a .Net Core 2.2 API back-end. This is interfacing with Azure Active Directory. On the Angular 7 side, it is authenticating properly with AAD and I am getting a valid JWT back as verified on jwt.io. On the .Net Core API side I created a simple test API that has [Authorize] on it. When I call this method from Angular, after adding the Bearer token, I am getting (as seen in Chrome Debug Tools, Network tab, "Headers"): WWW-Authenticate: Bearer

问题 I have the following scenario. My application registration defines a set of application roles I dynamically deploy a scaleset with a System assigned managed identity via ARM template During the deployment i want to assign that identity to one of the specific application role defined above I update my deployment template with the following resource { "type": "Microsoft.Authorization/roleAssignments", "apiVersion": "2017-09-01", "name": "<random Guid>", "dependsOn": [ "[concat('Microsoft

问题 I have the following scenario. My application registration defines a set of application roles I dynamically deploy a scaleset with a System assigned managed identity via ARM template During the deployment i want to assign that identity to one of the specific application role defined above I update my deployment template with the following resource { "type": "Microsoft.Authorization/roleAssignments", "apiVersion": "2017-09-01", "name": "<random Guid>", "dependsOn": [ "[concat('Microsoft

问题 I am trying to get AAD oauth 2.0 token by sending a post request but always getting the following error.(Please note using similar code in C# works perfectly and also using fiddler/postman) Origin http://localhost:24310 not found in Access-Control-Allow-Origin header function CallAAD() { var settings = { "async": true, "crossDomain": true, "url": "https://login.microsoftonline.com/saurabhpersonalad.onmicrosoft.com/oauth2/token", "method": "POST", "headers": { "content-type": "application/x

问题 I am trying to get AAD oauth 2.0 token by sending a post request but always getting the following error.(Please note using similar code in C# works perfectly and also using fiddler/postman) Origin http://localhost:24310 not found in Access-Control-Allow-Origin header function CallAAD() { var settings = { "async": true, "crossDomain": true, "url": "https://login.microsoftonline.com/saurabhpersonalad.onmicrosoft.com/oauth2/token", "method": "POST", "headers": { "content-type": "application/x

问题 I created my first organization and invited a user to it. They receive the email invitation and appear as a member of the organisation and project. However, they when they click join in the email invitation they are denied access. The organisation is not connected to Azure Active Directory as suggested in this thread. We have also tried troubleshooting connectivity as outlined by Microsoft docs. 回答1: You can try to create a new incognito window and sign in to your organization : https://dev

问题 I created my first organization and invited a user to it. They receive the email invitation and appear as a member of the organisation and project. However, they when they click join in the email invitation they are denied access. The organisation is not connected to Azure Active Directory as suggested in this thread. We have also tried troubleshooting connectivity as outlined by Microsoft docs. 回答1: You can try to create a new incognito window and sign in to your organization : https://dev

问题 I have set up a project like the following example from Microsoft where I have a native application requesting access to a web api using the v2.0 endpoint: https://github.com/azureadquickstarts/appmodelv2-nativeclient-dotnet I have managed to sign in successfully to AAD by using an account registered in that AAD and not a Microsoft account. I do receive a claim, however the claim does not contain neither a upn nor an email. I am using jwt.ms to analyse the claim and this is the info I am

问题 I have set up a project like the following example from Microsoft where I have a native application requesting access to a web api using the v2.0 endpoint: https://github.com/azureadquickstarts/appmodelv2-nativeclient-dotnet I have managed to sign in successfully to AAD by using an account registered in that AAD and not a Microsoft account. I do receive a claim, however the claim does not contain neither a upn nor an email. I am using jwt.ms to analyse the claim and this is the info I am

问题 I've a Python Flask App for which I've use Azure Easy Auth (Azure Active Directory)for App Service. The login mechanism works well. However I want the info of who the logged in user is i.e., name, email etc. For this I understood that we can call http://xyz.contoso.com/.auth/me which will return the data required. However, when I send a get request from the Web App, it does not work and returns a 401 with you do not have permission to view this directory or page . If I browse to the same page