zhigang
Reputation: 33
ADAL: The request body must contain the following parameter: client_secret
I wrote the authentication code below with ADAL for android:
mAuthContext = new AuthenticationContext(MainActivity.this, Constants.AUTHORITY_URL,false);
mAuthContext.acquireToken(MainActivity.this, Constants.RESOURCE_ID, Constants.CLIENT_ID,Constants.REDIRECT_URL, Constants.USER_HINT, getCallback());
Windows Azure China version(localized version) has not yet supported to register an app as "native client app", no option at all. So I continue seeing the error below when running the code above.
Server error message:
{"error":"invalid_request","error_description":"AADSTS90014: The request body must contain the following parameter: 'client_secret or client_assertion.
It seems there's no parameters about credentials for "acquireToken" in ADAL Android SDK. Does anyone know how to workaround this?
Upvotes: 3
Views: 13260
Answers (1)
Afshin
Reputation: 226
It seems since you could not add a naive client app, you have created a Web app instead which is analogous to confidential client in OAuth protocol. That is why it is asking for client credential. ADAL Android currently does not support confidential clients.
Upvotes: 8
Related Questions
- AADSTS7000218: The request body must contain the following parameter: 'client_assertion' or 'client_secret
- Not getting the Token in Azure API Apps - ADAL
- Why is the token returned by ADAL token showing unauthorised on a request made by Postman and how do i resolve it?
- ADAL.JS - Support POST method? Support normal auth code flow?
- Reproducing an ADAL.JS-authenticated request in Postman
- adal4j Auth issue
- Request an Access Token Using Client Secret Azure
- Web API on-behalf-of adal id_token error
- Authenticating with ADAL via REST
- ADAL 4 Android not passing client secret