Azure AD Out-of-the-box Authentication, ID Token & Access Token

Question

question

KevinAzure asked Jan 17, '20 SaurabhSharma-msft commented Feb 19, '20

Azure AD Out-of-the-box Authentication, ID Token & Access Token

Hi Experts,

I am using Azure AD Out-of-the-box Authentication. Login is successful.
https://working-angular-webapi.azurewebsites.net/.

Email: aadtester@jeanpaulvagmail.onmicrosoft.com Password: authentication1!

ID Token also found through URL:
https://working-angular-webapi.azurewebsites.net/.auth/me

However I need to get a Graph API Token also on behalf of User. I added the permission with "delegated" on Directory.Read.All for the AAD App Registration.

So using ID Token can I get a Silent Access Token from client-side or server-side?
(without Login prompt again)

What will be the code look like?

Thanks in advance.

azure-active-directory

5 |1600 characters needed characters left characters exceeded

Attachments: Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

Answer 1 · 2020-01-17T22:29:56.227Z

SaurabhSharma-msft answered Jan 17, '20 SaurabhSharma-msft commented Feb 19, '20

In order to use Microsoft Graph your application needs to get an access token from the Microsoft Identity platform and attach the same token to the Graph request. This authentication flow is described here.
Also, for an Angular sample you can refer to the documentation.

· 1

5 |1600 characters needed characters left characters exceeded

Attachments: Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

SaurabhSharma-msft · Feb 19, 2020 at 05:03 PM

Please let me know if you find above reply useful. If yes, do click on 'Mark as answer' link in above reply. This will help other community members facing similar query to refer to this solution. Thanks.

0 ·

question