Reputation: 21
Trying to reverse engineer this sample app. Only i have not created my own service, just trying to get my profile information using the Microsoft Graph API. Getting the following error:
AdalSilentTokenAcquisitionException: Failed to acquire token silently as no token was found in the cache. Call method AcquireToken
I am pretty new to this but i have gone through all the stackoverflow issues related to that error and have not been able to figure it out.
I'm using core latest version. I always fails with the above error on AcquireTokenSilentAsync. Any tips or ideas would be helpful.
Below is what i have so far.
public void Configure(IApplicationBuilder app, IHostingEnvironment env, ILoggerFactory loggerFactory)
if (env.IsDevelopment())
// Populate AzureAd Configuration Values
Authority = Configuration["Authentication:AzureAd:AADInstance"] + Configuration["Authentication:AzureAd:TenantId"];
ClientId = Configuration["Authentication:AzureAd:ClientId"];
ClientSecret = Configuration["Authentication:AzureAd:ClientSecret"];
GraphResourceId = Configuration["Authentication:AzureAd:GraphResourceId"];
GraphEndpointId = Configuration["Authentication:AzureAd:GraphEndpointId"];
// Configure the OWIN pipeline to use cookie auth.
app.UseCookieAuthentication(new CookieAuthenticationOptions());
app.UseOpenIdConnectAuthentication(new OpenIdConnectOptions
ClientId = ClientId,
ClientSecret = ClientSecret,
Authority = Authority,
CallbackPath = Configuration["Authentication:AzureAd:CallbackPath"],
ResponseType = OpenIdConnectResponseType.CodeIdToken,
GetClaimsFromUserInfoEndpoint = false,
Events = new OpenIdConnectEvents
OnRemoteFailure = OnAuthenticationFailed,
OnAuthorizationCodeReceived = OnAuthorizationCodeReceived,
private async Task OnAuthorizationCodeReceived(AuthorizationCodeReceivedContext context)
// Acquire a Token for the Graph API and cache it using ADAL. In the TodoListController, we'll use the cache to acquire a token to the Todo List API
string userObjectId = (context.Ticket.Principal.FindFirst(""))?.Value;
ClientCredential clientCred = new ClientCredential(ClientId, ClientSecret);
AuthenticationContext authContext = new AuthenticationContext(Authority, new NaiveSessionCache(userObjectId, context.HttpContext.Session));
AuthenticationResult authResult = await authContext.AcquireTokenByAuthorizationCodeAsync(
context.ProtocolMessage.Code, new Uri(context.Properties.Items[OpenIdConnectDefaults.RedirectUriForCodePropertiesKey]), clientCred, GraphResourceId);
// Notify the OIDC middleware that we already took care of code redemption.
public async Task<IActionResult> Index()
AuthenticationResult result = null;
var user = new ADUser();
string userObjectID = (User.FindFirst(""))?.Value;
AuthenticationContext authContext = new AuthenticationContext(Startup.Authority, new NaiveSessionCache(userObjectID, HttpContext.Session));
ClientCredential credential = new ClientCredential(Startup.ClientId, Startup.ClientSecret);
var tc = authContext.TokenCache.ReadItems();
result = await authContext.AcquireTokenSilentAsync(Startup.GraphResourceId, credential, new UserIdentifier(userObjectID, UserIdentifierType.RequiredDisplayableId));
HttpClient client = new HttpClient();
HttpRequestMessage request = new HttpRequestMessage(HttpMethod.Get, "");
request.Headers.Authorization = new AuthenticationHeaderValue("Bearer", result.AccessToken);
HttpResponseMessage response = await client.SendAsync(request);
if (response.IsSuccessStatusCode)
String responseString = await response.Content.ReadAsStringAsync();
List<Dictionary<String, String>> responseElements = new List<Dictionary<String, String>>();
catch (Exception)
return View();
Upvotes: 2
Views: 3200
Reputation: 6762
AuthenticationContext authContext = new AuthenticationContext(Startup.Authority, new NaiveSessionCache(userObjectID));
Debug this line and check for authContext cache dictionary table for data. If records are 0 then ask/redirect user to login. Once user logs in cache table should be filled and toke should be available.
AuthenticationContext authContext = new AuthenticationContext(Startup.Authority,
new NaiveSessionCache(userObjectID));
if (authContext.TokenCache.Count == 0)
CosmosInterface.Utils.AuthenticationHelper.token = null;
Upvotes: 0
Reputation: 1193
I'd recommend using the UserIdentifierType.UniqueId
as the sample does. Using the wrong identifier type can lead to cache misses. If the library can't find a token cache entry, it will fail with this error and you'll need to ask the user to sign-in again. Let me know if you already tried that and it didn't work.
Upvotes: 1