sharepointonline userphoto.aspx not returning picture with bearer token

Question

I am trying to retrieve the picture of a user within bot code using the following url using a Bearer token

https://mytenant.sharepoint.com/_layouts/15/userphoto.aspx?size=S&username=john.doe@mytenant.com

When I check via a browser the picture shows up fine. When trying to retrieve it programmatically, it returns an image but its the default placeholder silhouette grey image.

I gave the app in AAD a good amount of permissions

Any idea what I am missing? Tried all options I could think of.

My code is as follows:

using (HttpClient httpClient = new HttpClient())
{
    byte[] imageBytes = null;
    httpClient.DefaultRequestHeaders.Authorization = new AuthenticationHeaderValue("Bearer", bearer);
    var responseMessage = await httpClient.GetAsync(@"https://mytenant.sharepoint.com/_layouts/15/userphoto.aspx?size=S&username=john.doe@mytenant.com");
    imageBytes = responseMessage.Content.ReadAsByteArrayAsync().Result;
    string filePath = "C:\\Data\\Trash\\MyImage.jpg";
    File.WriteAllBytes(filePath, imageBytes);
}

Is this happening for all users ? – Satya V Jul 30 '21 at 07:22 — Satya V, Jul 30 '21 at 07:22

Nikolay · Answer 1 · 2022-01-26T14:44:46.267

You are doing nothing wrong, just the page userphoto.aspx does not understand bearer token authentication. It understands only cookies, as far as I know.

Since you have User.ReadBasic.All anyway you can just use graph to get the photo instead. Replace

https://mytenant.sharepoint.com/_layouts/15/userphoto.aspx?size=S&username=john.doe@mytenant.com

with:

https://graph.microsoft.com/v1.0/users/john.doe@mytenant.com/photo/$value

And it should go

sharepointonline userphoto.aspx not returning picture with bearer token

1 Answers1