AADSTS900144: The request body must contain the following parameter: 'scope' when using legacy Developer Portal

Question

I was trying to implement AAD in my APIM instance based on this article and this article. Unfortunately when it came down to Developer console, right after I picked Authorization code as the Authorization method a popup showed up and showed me the following error:

AADSTS900144: The request body must contain the following parameter: 'scope'.

It failed on https://login.microsoftonline.com/{Directory (tenant) ID }/oauth2/v2.0/authorize?response_type=code&client_id={client id}&redirect_uri=https://{my-apim-instance}/docs/services/{authorization method}/console/oauth2/authorizationcode/callback&state={state}.

Since all of this is part of Azure Portal (at this point the legacy Developer Portal) I do not fill the scope parameter. How can you set that property? Or is the problem somewhere else?

Answer 1

Since you are using V2 endpoints, you need to use the scope you created for the backend-app in the Default scope field.

You can find the scope from your webapi application.