![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(41.6, 42%, 14%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ECT%3C/text%3E%3C/svg%3E)
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
19,428 questions
Hello @Chandan Tiwari ,
Thanks for reaching out.
Looking at above correlation ID, it seems that application (client_id) which is involved in this flow was registered in Azure AD as Web app platform type but whereas token requested from a JavaScript single-page application (SPA) using auth code flow.
Therefore, to fix the issue, the application must be configured as Single-Page application instead web app platform in Azure AD app registration by including unique reply URL as shown below (or) make sure the token request not include an Origin header, if being sent from a non-browser client.
To update an existing redirect URI to enable CORS, open the manifest editor and set the type field for your redirect URI to spa in the replyUrlsWithType section
Once updated then you would see Single-page application added as authentication platform:
Hope this helps.
------
Please "Accept the answer" if the information helped you. This will help us and others in the community as well.