azure-active-directory

问题 I created a Node.js based web application, running in an Azure Web App, that I wanted to put behind an Azure Active Directory authentication. After activating "App Service Authentication", the login process works normally, however upon returning to my app, it just returns a HTTP 431 "Request Header Fields Too Large". To validate it's not my app, I checked the Azure web app sample for Node.js and even this returns a 431 when activating AAD. Steps to reproduce: Create new Azure resource -> Web

问题 I created a Node.js based web application, running in an Azure Web App, that I wanted to put behind an Azure Active Directory authentication. After activating "App Service Authentication", the login process works normally, however upon returning to my app, it just returns a HTTP 431 "Request Header Fields Too Large". To validate it's not my app, I checked the Azure web app sample for Node.js and even this returns a 431 when activating AAD. Steps to reproduce: Create new Azure resource -> Web

问题 I am getting an error message relating to an attempt to authenticate with azure active directory and in that error message the url it is trying to connect to is shown as '[PII is hidden]'. I think i can better resolve the issue if i can see this value but i don't know how to tell .net that it is okay to show it to me. Does anyone know how to force .net to show me the value/url that it is hiding? 回答1: After a lot of searching i found that the way to make the error and logging show the correct

问题 Received access token from AAD, using below url https://login.microsoftonline.com/gdfdddddd-87dd-497c-b894-xxxxxx/oauth2/v2.0/token grant_type :client_credentials client_id :xxxxx-1ff5-4615-8d71-yyyyyy client_secret:[7aCw]fdsfsfsfds.AC61Fg:cm33 scope : https://vault.azure.net/.default Validated the above received token using below code manually & it works fine IConfigurationManager<OpenIdConnectConfiguration> configurationManager = new ConfigurationManager<OpenIdConnectConfiguration>("https:/

问题 I tried to use the currently recommended Authorization Code Flow with PKCE to gather an access token from Active Directory. The client will be a public Angular SPA which is the reason for the chosen flow. Gathering the openid-configuration form AD as well as the Authorization Code for a user worked well. But I fail requesting the access token from the following endpoint: https://login.microsoftonline.com/{tenantId}/oauth2/token. I tried to reconstruct the request in Postman: POST /7e8c2868

问题 The goal is to develop an Azure function which should do some changes in Azure DevOps (like update work items, wiki pages etc), being triggered by Azure pipeline service hook. Can I use function system identity in this case? And how can I give permissions for this identity to call DevOps REST APIs? 回答1: I'm not sure if this is the best way but you can create PAT token. Since you will use it for Azure Function I woudl recommend to use Azure KeyVault to store that token. Here you have the

问题 I have created AAD application from gallery. There is one in app registrations section and one in enterprise applications. App registrations application points to the enterprise app (managed application in local directory). I want to configure SAML SSO for the enterprise app. There are a few required properties which have to be set. I am able to set Sign on URL (using graph api), but I cannot set Identifier (Entity ID) and Reply URL . I thought that this will do the job: Set

问题 I am currently building an Alexa skill backed by Azure Functions (.NET Core/C#) and Azure AD B2C for authentication. For the initial setup, I used mostly used the instructions found in this arcticle. Since, the article was written a couple of years ago, I had to make a few changes. In the end, I landed on the following configuration: Azure Active Directory B2C As I mentioned, we are using AAD B2C for authentication. Users of a related application are able to sign-up and sign-in to a React

问题 I am using below code to match Department Name: string departmentName = "Admin"; var departmentPeoples = await graphServiceClient.Users.Request().Filter($"department eq '{departmentName}'").Select(u => new { u.DisplayName, u.MobilePhone, u.BusinessPhones, u.UserPrincipalName }).GetAsync(); This works, but when my search string is Admin & IT ,it doesn't work because of & sign. I tried using var departmentname ="Admin \& IT" But still it shows error: Microsoft.Graph.ServiceException: 'Code:

问题 I want to create users in Azure SQL database. I am running this PowerShell through Azure Functions. I have set up my own name as server admin. Also I have configured the firewall. But I am not able to connect to SQL database. It gives me error : Cannot open server "domain.com" requested by the login. The login failed. This is my script: $serverName = "servername.database.windows.net" $databaseName = "databasename" $adminLogin = 'user@domain.com' $PWord = "password" $query = "CREATE USER