An error occurred while requesting the token with "Expose an API” scope. AADSTS70011:The provided value for the input parameter 'scope' is not valid

Question

I have added scope to "Expose an API" on the Azure portal with the reference of Microsoft document and granted API permission to that scope. After that I request a token using postman it returns an error AADSTS70011: The provided request must include a 'scope' input parameter. The provided value for the input parameter 'scope' is not valid.

When I try scope like this {resource}/.default works fine. But, I need scope like {resource}/access_as_user

I have already tried this link, but it did not work.

Has your problem been solved? – Carl Zhao Mar 05 '21 at 01:33 — Carl Zhao, Mar 05 '21 at 01:33

Carl Zhao · Accepted Answer · 2021-03-08T02:50:10.917

You have used the wrong authentication flow, and you have granted delegated permissions. In this case, you should use the auth code flow.

Then you can set the scope to: api://{resource}/access_as_user.

Add：

This is my test process:

First obtain the authorization code in the browser:

https://login.microsoftonline.com/xxxxxxxx-bd27-40d5-8459-230ba2a757fb/oauth2/v2.0/authorize? 
client_id=5f11e827-xxxx-4f1f-aa05-33a33f806aab
&response_type=code
&redirect_uri=https://jwt.ms/index
&response_mode=query
&scope=api://c848e37d-xxxx-4cd8-b9bf-0b2aa6927a82/access_as_user
&state=12345

Use the authorization code to redeem the access token:

I am doing with Auth code flow, but I am getting same error. — Vishal Kiri, Oct 06 '22 at 13:01

An error occurred while requesting the token with "Expose an API” scope. AADSTS70011:The provided value for the input parameter 'scope' is not valid

1 Answers1