Reputation: 903
Validating token from Azure App Service through postman returns 401
I've integrated my application with Azure AD authentication. While I can successfully login through the same, I want to access the response claims sent by AD post re-direction of my application from AD to homepage.
So, I've followed Microsoft Docs to get the response claims. i.e., https://app-name.azurewebsites.net/.auth/me
I can see access-token, id-token etc in my response, while I hit the url from my browser.
Now, for my API URLs to get validated, I've to pass access-token in my authorization header. But, also, I want to validate the passed access token (from API) through Azure service, for which the way is:
POST https://<appname>.azurewebsites.net/.auth/login/aad HTTP/1.1
Content-Type: application/json
{"id_token":"<token>","access_token":"<token>"}
I want to test the same first through postman, but, I get 401 unauthorized.
Upvotes: 0
Views: 1854
Answers (1)
Reputation: 42133
If you use aad provider, just pass the {"access_token":"<access_token>"} in the body.
See here:
First, login to https://app-name.azurewebsites.net/.auth/me, copy the id_token(not the access_token).
Then in the postman, pass the id_token copied to the {"access_token":"<access_token>"}.
Upvotes: 3
Related Questions
- Getting access tokens from Postman: Tokens issued for the 'Single-Page Application' client-type may only be redeemed via cross-origin requests
- Postman with OAuth2.0 to a registered app in Azure Active Directory fails with Invalid Resource
- Generate bearer token using postman
- Can't access Azure Appservice protected by AAD from Postman
- Postman returns 401 despite the valid token distributed for a secure endpoint
- AAD B2C authorized Web Api test with Postman fails
- How to get valid access token to call Azure REST API from Postman
- Getting access denied when accessing Azure Web App via token
- Getting an "unauthorized_client" when tryging to get a new access token, why?
- OAuth2.0-protected Azure api: Cant get auth token in Postman