azure-active-directory

问题 I am trying to create an app that runs from an AWS lambda that acts as a middle man for customers wanting to sign up for a booking using Microsoft Bookings. Following the documentation I am able to generate an access token for Graph, but I get an authorization denial when I try to request information from bookings through the api. My Code: import request from "request"; import { Callback } from "./callback"; const APP_ID = process.env.BOOKINGS_APP_ID; const APP_SECRET = process.env.BOOKINGS

问题 I am trying to create an app that runs from an AWS lambda that acts as a middle man for customers wanting to sign up for a booking using Microsoft Bookings. Following the documentation I am able to generate an access token for Graph, but I get an authorization denial when I try to request information from bookings through the api. My Code: import request from "request"; import { Callback } from "./callback"; const APP_ID = process.env.BOOKINGS_APP_ID; const APP_SECRET = process.env.BOOKINGS

问题 I have a web site that calls an API. To call the API from the web site I'm getting first a jwt token using GetAccessTokenForUserAsync(scope). My problem is that this method doesn't retrieve user's roles inside the jwt token. My user.identity.claims has a few roles but they are not include in the jwt token. What I'm missing? I'm to trying to including the roles in the jwt token because I need to secure my api methods. For example, a method can be called only by AdminMember, other method only

问题 Im trying to deploy Azure Function App in Azure Devops but I received the following error: failed to create an app in azure active directory - insufficient privileges Look the following image: 回答1: Very agree with what @4c74356b41 commented above, but not the only solution you can try with. As what the error message said: Insufficient privileges to complete the operation.Ensure that the user has permission to create an Azure Active Directory application. This is an Insufficient privileges

问题 I'm trying to build a multi-tenant application to retrieve all subscription information from my personal account. Using the Powershell ARM I'm able to retrieve this information: However, when trying to do this action using the azure management API: https://management.azure.com/subscriptions?api-version=2016-06-01 Using a JWT generated using my tenant, application id and key secret it returns the following: {"value": [] } My application permissions seem fine: Am I missing something from my

问题 I am trying to search users based on wild card regex match using below code snippet: var users = await graphServiceClient.Users.Request().Select(e => new { e.DisplayName, e.GivenName, e.PostalCode }).Filter(RegexMatch(DisplayName("Rob.* Thomas") ).GetAsync(); So, above should match user "Robert Thomas"and RegexMatch is currently not available in filter keyword list ,i have just used as an example to achieve this task. Below should match Robin Thomas:- Filter(RegexMatch(DisplayName("Robi.?

问题 I am trying to search users based on wild card regex match using below code snippet: var users = await graphServiceClient.Users.Request().Select(e => new { e.DisplayName, e.GivenName, e.PostalCode }).Filter(RegexMatch(DisplayName("Rob.* Thomas") ).GetAsync(); So, above should match user "Robert Thomas"and RegexMatch is currently not available in filter keyword list ,i have just used as an example to achieve this task. Below should match Robin Thomas:- Filter(RegexMatch(DisplayName("Robi.?

问题 I am developing an API(ASP.NET Core) which is accessed via separately hosted web client(React), both hosted on azure as app services. Client app must have auth based on azure Ad(single tenant, preferably secured by azure auth based on aad). When the user signs in to client the API must have access to MS Graph on behalf of user. Obviously both resources must be secured, I have tried using azure auth based on AAD on both app services, but I couldn't get a token to MsGraph in this approach with

问题 I am developing an API(ASP.NET Core) which is accessed via separately hosted web client(React), both hosted on azure as app services. Client app must have auth based on azure Ad(single tenant, preferably secured by azure auth based on aad). When the user signs in to client the API must have access to MS Graph on behalf of user. Obviously both resources must be secured, I have tried using azure auth based on AAD on both app services, but I couldn't get a token to MsGraph in this approach with

问题 I set up a new Blazor.NET project in Visual Studio 2019 (preview 5) and add Azure AD B2C (AADB2C) and deploy it to an Azure Docker AppService. If I don't enable OAuth2 implicit flow in AADB2C, then I get the following error using an AADB2C V2 Sign-In-Flow: error=unauthorized_client&error_description=AADB2C90057%3A+The+provided+application+is+not+configured+to+allow+the+%27OAuth%27+Implicit+flow. However, the AADB2C site advises against using this flow unless required for serverless SPA. It