Reputation: 65
List users' Azure subscriptions
My application uses Azure AD and OpenID Connect to sign-in users (see https://github.com/Azure-Samples/active-directory-dotnet-webapp-openidconnect).
I want to be able to list users' Azure subscriptions when they've signed-in. I cannot figure what I need to do after a user has successfully signed-in and they've been redirected back to my app, i.e. how/where I get a hold of the necessary access token or credentials, and, to be honest, which is the correct API to call with said token/credentials. Can this be done? Is an entirely different approach necessary?
Upvotes: 0
Views: 189
Answers (2)
Reputation: 65
One of the notification events (raised as part of the sign-in flow) receives an authorization code. With the code, I was able to acquire an access token (using AuthenticationContext.AcquireTokenByAuthorizationCode) and, with that, I was able retrieve the subscriptions using this API https://management.azure.com/subscriptions. Note: ensure your AD application delegates permissions to the Service Management API.
Upvotes: 0
Reputation: 807
Look through the code in the example for an instance of AuthenticationResult. The access token can be accessed at AuthenticationResult.AccessToken and you can decide what you want to do based off that.
Upvotes: 1
Related Questions
- Post_Logout_Redirect_Uri does not redirect when authenticating using azure
- Azure Active Directory, IDX10500: Signature validation failed
- HttpContext.Current is null on TokenCache.BeforeAccess
- Manage token life time for openID connect
- How to validate the id_token
- How to call Azure AD Graph API in case of web application that uses WS-Federation to sign-in users from a single Azure Active Directory tenant
- Azure AD B2C Insufficient privileges to complete the operation while using Graph API
- Create users in ASP.NET Core web app using Active Directory authentication
- Azure AD OpenIDConnect + ASP.NET Core - Authenticate and Extra Permissions/Token?