Azure Active Directory Access Token from Id Token -

-

i'm using webview build mobile app. means we're writing in html/js hosted locally (file system), receiving data apis. using adal.js received id_token, trying use authentication token, described here results in 401 unauthorized.

is configuration missing?

request:

post https://myams.azure-mobile.net/login/aad http/1.1 host: myams.azure-mobile.net connection: keep-alive content-length: 1264 pragma: no-cache cache-control: no-cache accept: application/json, */*; q=0.01 origin: file:// authorization: bearer ey...ww user-agent: mozilla/5.0 (linux; android 4.4.4; en-us; nexus 4 build/jop40d) applewebkit/537.36 (khtml, gecko) chrome/42.0.2307.2 mobile safari/537.36 content-type: application/json accept-encoding: gzip, deflate accept-language: en-us,en;q=0.8  access_token=ey...ww

response

http/1.1 401 unauthorized content-length: 0 server: microsoft-iis/8.0 www-authenticate: basic realm="service" access-control-allow-origin: * x-powered-by: asp.net date: mon, 27 jul 2015 10:47:45 gmt

this audience mismatch. adal.js obtains id_token via implicit flow, requires identify target resource clientid (a guid). not in mobile services team, assume expect in incoming token app id uri instead. need access token in order audience other clientid. asmple in https://github.com/azureadsamples/singlepageapp-webapi-angularjs-dotnet shows how. disclaimer: adal.js not designed used in web view. might find use difficult in scenario. cases, provide cordova plugin: http://www.cloudidentity.com/blog/2015/04/06/adal-plugin-for-apache-cordova-deep-dive/


Comments

Post a Comment

Popular posts from this blog

yii2 - Yii 2 Running a Cron in the basic template -

-
i have seen instructions on running cron in advanced template, cant figure out how on basic template. have following controller in basic controllers folder. <?php namespace app\controllers; use yii\console\controller; /** * cron controller */ class croncontroller extends controller { public function actionindex() { echo "cron service runnning"; } public function actionmail($to) { echo "sending mail " . $to; } } i have navigated root of application , tried these comands yii cron php yii cron im getting unknown comand "cron" i know old question failed find actual answer this. if @ code yii exec file you'll notice requires /common/config/aliases.php file console/config/main.php. can naturally change these or copy on these advanced template. hope solves problem wanting same thing.
Read more

asp.net - 'System.Web.HttpContext' does not contain a definition for 'GetOwinContext' Mystery -

-
i realize question might seem trivial some, it's these types of things find myself fighting quite bit , want make sense of despite seeming losing battle in .net (for me anyway). so, if following: using system.web; ... applicationuser user = system.web.httpcontext.getowincontext().getusermanager<applicationusermanager>().findbyid(system.web.httpcontext.user.identity.getuserid()); that produces error in title , red getowincontext() , error cannot resolve symbol 'getowincontext()' however, if following (remove system.web in front of httpcontext ), works expected (or @ least no errors): using system.web; ... applicationuser user = httpcontext.getowincontext().getusermanager<applicationusermanager>().findbyid(system.web.httpcontext.user.identity.getuserid()); however, if (same line that's working using system.web commented out): //using system.web; ... applicationuser user = httpcontext.getowincontext().getusermana...
Read more

mercurial graft feature, can it copy? -

-
there new feature in mercurial 3, called 'graft' (graft local). job of moving change-set different branch. is there way "copy" change-set branch? i interested in in moving stuff qa branch production branch, still need code reside in qa. want copy. found , have tried few things, maybe it'll become clear more tinkering , reading... does have better way of 'cherry picking' change-sets move cross branch (or trunk)??? graft copies changesets, doesn't move them. hg graft (emphasis mine): this command uses mercurial's merge logic copy individual changes other branches without merging branches in history graph. known 'backporting' or 'cherry-picking' . default, graft copy user, date, , description source changesets.
Read more