Closed jslhcl closed 4 years ago
I actually found the same thing today against the /security/alerts graph api - 403 even though the correct permissions were set in the application and the decoded JWT appeared to show the scopes were present. Never could figure out why it wasn’t working.
This bug should be fixed in the latest version of msal js
. You can also try upgrading from 1.0.0
of adal js
to the latest 1.0.17
version.
All current authentication work from Microsoft is delivered through the msal js
library here. adal js
is still supported only for security fixes. We recommend moving to msal js
for any advanced feature requests and bugfixes.
I'm submitting a...
Browser:
Library Name
Library version
Library version: 1.0.0
Current behavior
When I query Graph API to acquire OneNote pages info with the token from adal.js v1.0.0, I always get 403 error, even if I have already specified OneNote read permission in the corresponding App in Azure portal.
Expected behavior
Minimal reproduction of the problem with instructions
Pasted the code snippet below:
the above code always outputs "Fetching OneNote info failed". when decoding JWT, it only contains "read user profile" permission (so it works if i uncommented "filesUri = config.endpoints.graphApiUri + "/v1.0/me")
Also pasted the screenshot of the permission level of the according Azure app
I searched the Internet and tried this solution, but no luck