Questions tagged [on-behalf-of]
10 questions
1
vote
1 answer
Azure AD on-behalf-of for service principal
I have an Api in Azure that 3rd parties should integrate with. Each client app (app registration) represents a company and should only access that company's data, the same way a user would only access it's company's data. My problem is that there's…
Erik Särner
- 1,037
- 6
- 8
1
vote
0 answers
Microsoft.Identity.Client AcquireTokenOnBehalfOf doesn't get token from cache
I have a problem to figure out how implement cache with AcquireTokenOnBehalfOf. Every time when I call code below for the same user I get different token, so I suppose that there is no inner cache mechanism or something like that.
var app =…
Iwoo
- 147
- 2
- 12
1
vote
0 answers
Efficiently working with On-Behalf Of access tokens in an ASP.NET Core application
Note: this is a follow-up of Reusing a Polly retrial policy for multiple Refit endpoints without explicitly managing the HttpClient
When making Refit work with Polly and an Azure AD-based authentication (On Behalf Of flow), I realized that acquiring…
Alexei - check Codidact
- 22,016
- 16
- 145
- 164
0
votes
1 answer
Azure Active Directory Error - Application is not authorized to make application on-behalf-of calls
How can I resolve the "AADSTS7000113: Application [Id] is not authorized to make application on-behalf-of calls" error in Azure Active Directory?
Is there some settings I need to change for this application in the Azure Active Directory? In order to…
Devin
- 1
- 1
0
votes
1 answer
On-behalf-of flow failing with downstream API's using Microsoft.Identity.Web
I'm having difficulty getting a basic OBO example up and running. Any insight is greatly appreciated as I haven't been able to find a complete example that uses my scenario:
A client app (WebApp1) that calls api1, which in turn calls api2 via OBO…
Coden00b
- 87
- 1
- 8
0
votes
1 answer
AWS IAM on-behalf-of flow Oauth2.0
Does AWS Identity Management have the concept of on-behalf-of tokens when authenticating to APIs "on behalf of" a user? I thought that this was a key part of the OAuth2.0 protocol. I can't find any resources on this in any of AWS docs. If one…
Daniel
- 2,345
- 4
- 19
- 36
0
votes
2 answers
Why am i getting an invalid access token from On-behalf-of-flow
When I am using On-Behalf -Of-Flow and hitting /token endpoint with "common" tenant and word as middletier token as assertion with scopes as "openid profile offline_access user.read" i get a malinformed token , but it works for /me endpoint of…
yatin tripathi
- 78
- 7
0
votes
1 answer
how to handle the scenario web api 1 calling web api 2 while azure b2c doesn't support "on behalf of"
Since B2C on behalf of is not supported, what are the options of passing in a secure way using the azure infrastructure the identity of a user downstream?
After Web app --> Web Api 1, B2C cannot generate (to my knowledge) token with user claim to be…
Fredou
- 19,848
- 10
- 58
- 113
0
votes
1 answer
(.NET Core & AzureAd) How to keep user-context in long running process for calling downstream API
Intro / context
I have a .NET Core application and I know nothing about .NET Core which puts me in prime position for not finding a solution to this for me way too complex problem.
The application is built in a standard way. There is a Startup.cs…
gestj
- 151
- 9
0
votes
1 answer
Azure DEVOPS make pull request using on-behalf-of flow
I am trying to figure out what is needed so that my application is able to make a pull request on behalf of my user.
I have an app registration, for this app registration I am requesting the following API…
Liviu
- 1,023
- 2
- 12
- 33