Signature verification failed #260
Comments
|
Signature varification not failed if i send I set jwt decode option and its decoding as per below screenshot. Here aud, iss are not match, and i think thats the issue. if i change
|
|
You must use the access token. Seems like your token is for graph (the audience is for graph), so that won’t work. |
|
Which token you get will often be correlated to the scope you’re using. Ensure the scope is correct. |
|
Here is the scope that i have in my Reactjs app Here is the scope which defined in my app
|
|
exactly which permission i have to use in order to resolve this issue? My requirement is simple, sign in and read user profile data |
|
You need to also have the scope for your backend app. It’ll be something like: Maybe my FastAPI documentation (which is more recent and 100% Azure focused) will clear things up: https://intility.github.io/fastapi-azure-auth/single-tenant/azure_setup |
|
In that app we create a custom scope (which you can do to, or use the default one), and then we ensure the SPA requests a token for that scope: https://intility.github.io/fastapi-azure-auth/single-tenant/fastapi_configuration#implementing-fastapi-azure-auth It's important to note that you'll most likely not need the User.Read etc, if you want to fetch additional data from Graph that can be done through the OBO flow. |
|
Thanks @JonasKs , issue resolved. Thanks for your help. |
|
Good to hear that! You’re welcome 😊 |
|
I have the exact same issue. @chiragkanhasoftdev could you please let me know the steps you took to solve this? |
Hey
I have followed this link to generate Frontend and Backend app https://django-auth-adfs.readthedocs.io/en/latest/azure_ad_config_guide.html and from #259
Do i have to use same client_id for Frontend and Backend?
I have below configuration in my backend.
But when i call API for validate auth_token from Frontend, i am receiving below error.
I have also tried web and SPA within same app
Upvote & Fund
The text was updated successfully, but these errors were encountered: