Reputation: 169
Skype Web SDK Oauth2 authorization invalid resource
I am trying to integrate Skype for Business with my app using Skype Web SDK, but I cannot even complete authorization. This is my code based on the code from this video: https://youtu.be/EyHL1HH9FzE?t=20m20s
public connect() {
var client_id = "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx";
if (!/^#access_token=/.test(location.hash)) {
console.log("no token");
location.assign(
"https://login.microsoftonline.com/common/oauth2/authorize"
+ "?response_type=token"
+ "&client_id=" + client_id
+ "&redirect_uri=" + location.href
+ "&resource=https://webdir.online.lync.com"
);
} else {
console.log("token present");
}
}
I am being redirected to the microsoft page, where I can log in, however next I am being redirected back to my app with the following url: http://myapp/ui/index.html#error=invalid_resource&error_description=AADSTS50001%3a+Resource+identifier+is+not+provided.%0d%0aTrace+ID%3a+0efb74b9-6063-4046-9710-836d43641d00%0d%0aCorrelation+ID%3a+7fcbee4c-e543-4b00-a485-152779f346bb%0d%0aTimestamp%3a+2018-06-13+13%3a52%3a30Z
So it says the error is
an invalid resource and that the resource identifier is not provided.
I have copied the resource part from the video and have seen it in multiple other tutorials
+ "&resource=https://webdir.online.lync.com"
In azure I have set oauth2AllowImplicitFlow to true and delegated permissions for Skype for Business Online are also added to that app.
Upvotes: 1
Views: 203
Answers (1)
Reputation: 24549
an invalid resource and that the resource identifier is not provided.
I also can reproduce the issue you mentioned if I use location.assign. It seems that CORS prevent it. It is not related with resource=https://webdir.online.lync.com
Note that security settings, like CORS, may prevent this to effectively happen
Solution:
window.location.href = href
Please have a try to use the following code, then it works correctly on my side. For more information, please refer to this article.
var client_id = "xxxx"
window.sessionStorage.setItem('client_id', client_id);
var href = 'https://login.microsoftonline.com/common/oauth2/authorize?response_type=token&client_id=';
href += client_id + '&resource=https://webdir.online.lync.com&redirect_uri=' + window.location.href;
window.location.href = href;
Upvotes: 3
Related Questions
- Can't sign in to UCWA
- Accessing Skype for Business API (UCWA) : HTTP 403 / Forbidden
- Skype For Business Online Authentication Error - 403 Permission Denied
- Authentication using Azure AD, failing at last step accessing Skype for Business
- Skype for Business in Azure UCWA authentication - Issued token not accepted
- Adding Skype for Business scope to v2.0 Azure app
- Unable to login to Skype Web SDK Samples
- Skype for Business UCWA oauth problems, error 401 when try create ucwa applications
- Skype for business web sdk 401 Unauthorised when trying to login
- Skype Rest API Auth