CODEWITHSUNDEEP
azuregraphmicrosoft-graph-apiazure-ad-graph-api
SweeneyRobb
SweeneyRobb

Reputation: 80

Azure AD Graph vs Microsoft Graph App Authorization Tokens

i have an application currently using the Azure AD Graph API. I would like to start migrating the app to Microsoft Graph. However, i would like to reuse the bearer tokens for hitting both the Azure AD Graph API and Microsoft Graph API.

how can i accomplish this? as currently it seems as if the apps must be registered in different portals for the different api's respectively.

Upvotes: 2

Views: 715

Answers (1)

Andrew Shepherd
Andrew Shepherd

Reputation: 45252

it seems as if the apps must be registered in different portals for the different api's respectively

This is not consistent with my experience. I have registered my Application in Azure Active Directory.

Using the Azure portal, I am able to get permissions to both the Microsoft Graph Api and the Windows Azure Active Directory API.

enter image description here

i would like to reuse the bearer tokens for hitting both the Azure AD Graph API and Microsoft Graph API.

You cannot use the same token for both the Azure AD Graph API and Microsoft Graph API.

In my code, I receive an access token via the following call:

AuthenticationResult result = await authContext.AcquireTokenByAuthorizationCodeAsync(
                authorizationCode,
                redirectUri,
                CreateClientCredential(),
                resourceString
            );

The resourceString parameter is either https://graph.windows.net/ for the AD Graph API, or https://graph.microsoft.com for the Microsoft Graph API.

They are distinct resources, so you must manage two tokens, applying the appropriate token for each API call.

Upvotes: 3

Related Questions