AADSTS900144: The request body must contain the following parameter: 'scope' when using legacy Developer Portal

Question

I was trying to implement AAD in my APIM instance based on this article and this article. Unfortunately when it came down to Developer console, right after I picked Authorization code as the Authorization method a popup showed up and showed me the following error:

AADSTS900144: The request body must contain the following parameter: 'scope'.

It failed on https://login.microsoftonline.com/{Directory (tenant) ID }/oauth2/v2.0/authorize?response_type=code&client_id={client id}&redirect_uri=https://{my-apim-instance}/docs/services/{authorization method}/console/oauth2/authorizationcode/callback&state={state}.

Since all of this is part of Azure Portal (at this point the legacy Developer Portal) I do not fill the scope parameter. How can you set that property? Or is the problem somewhere else?

score 6 · Accepted Answer · answered Jan 21 '20 at 01:09

6

Since you are using V2 endpoints, you need to use the scope you created for the backend-app in the Default scope field.

You can find the scope from your webapi application.

answered Jan 21 '20 at 01:09

Tony Ju

14,891
3
17
31

1

That solved the problem :-) It also introduced another one, but I think the new one should be easier to solve :-) Thank you. – Maurice Klimek Jan 21 '20 at 10:59

AADSTS900144: The request body must contain the following parameter: 'scope' when using legacy Developer Portal

1 Answers1

Linked