Reputation: 1096
Onedrive API rejects access token (CompactToken parsing failed with error code: 8004920A)
Hopefully I'm missing something very simple. According to this documentation to get an access token I need to hit the following url:
https://login.live.com/oauth20_authorize.srf?client_id={client_id}&scope={scope}
&response_type=token&redirect_uri={redirect_uri}
So far this appears to be working as the returned url I get contains
/#access_token=EwAYA61DBAAUcSSzo.......
According to the token flow documentation above,
You can use the value of access_token to make requests to the OneDrive API.
According to this page,
Your app provides the access token in each request, through an HTTP header:
Authorization: bearer {token}
When running curl I give it the exact token I was given before,
curl -X GET \
https://graph.microsoft.com/v1.0/drive \
-H 'Authorization: Bearer EwAYA61DBAAUcSSzoTJJs.....
{
"error": {
"code": "InvalidAuthenticationToken",
"message": "CompactToken parsing failed with error code: 8004920A",
"innerError": {
"request-id": "8780c600-2b7f-45a0-b484-7eca9dfd2697",
"date": "2019-01-25T19:33:22"
}
}
}
Why is the token they provided not working?
What I've tried so far:
- changing the case of bearer in the header
- wrapping said token in {}
- generating new tokens
- URL decoding said token
One thing to note: the tokens I am receiving are not JWT tokens. Googling the error code pulls up several Stack Overflow questions that seem to imply the graph api is expecting a JWT. If this is the case, am I missing a step to obtaining it?
Upvotes: 2
Views: 3550
Answers (1)
Reputation: 745
You can't call Microsoft Graph API after completing the authentication flow for Microsoft accounts (OneDrive personal).
In addition, the authorization process with Microsoft accounts is no longer recommended according the docs and new applications should be developed using Microsoft Graph:
This topic contains information about authorizing an application using Microsoft accounts for OneDrive personal. However, this approach is no longer recommended. New applications should be developed using Microsoft Graph and follow the authorization process in Authorization and sign-in for OneDrive in Microsoft Graph.
Upvotes: 6
Related Questions
- Error "invalid_client" when trying to get a token from Microsoft API
- Microsoft Graph API One Drive Unable to read JSON request payload
- Interact with OneDrive through Microsoft Graph API using Access Token
- Unable to get access to onedrive content
- OneDrive Microsoft Graph error : Token contains invalid signature
- MS Graph API: OneDrive resource not found
- One Drive REST API - Current authenticated context is not valid for this request
- Resource not found for the segment user - Application Token
- Microsoft OneDrive API InvalidAuthenticationToken CompactToken parsing failed with error code: -2147184105
- Microsoft Graph with OneDrive API, invite : fail with Unsupported segment type