I manage to fix the issue . Need to use tenant id in authority instead of common. The actual solution is posted here. Thank you.
How to get app role claims (Roles) in access token to protected API when using Javascript client app with MSAL.js
Anand Palanidurai
6
Reputation points
I have two applications. One client app and protected api. I want to pass app roles as claim to protected api on behalf of signed in user from client app. I have added app roles (admin_user_access,normal_user_access) to both client app and api . Also assigned users for those app roles through Enterprise applications section. Also enabled User assignment required? option for both applications. Now when I get token from azure AD I cannot get roles in claim. I able to get scope only that I expose in api. Kindly help me to resolve the issue. Thanks in advance.