AADSTS9000411: The request is not propetly formatted. The parameter 'prompt' is duplicated.

Question

AADSTS9000411: The request is not propetly formatted. The parameter 'prompt' is duplicated.

tanusha25 6

I am using adal.js for implementing the login to my app. For some reason, I cannot use admin_consent, so I am using prompt=consent in extraQueryParameter.

I am getting the prompt as well but after accepting the same it is giving an error

AADSTS9000411: The request is not properly formatted. The parameter 'prompt' is duplicated.

When checked the query contains 2 prompts

prompt=consent and
prompt=none

Also, i don't want to display the consent again if user has accepted once?

Can someone please help why I am getting prompt=none when I am using "consent"?

Any help would be appreciated. Screenshots attached for reference.

2 answers

Your answer

Answer 1

tanusha25 6

Hi @Shweta Mathur ,

Thanks for your reply!

Yes the URL mentioned by you is correct but response_type=id_token is what i am using.
It displays the admin consent screens successfully to me as well & when i checked AZ portal, it does provides the consent also.

but I am getting this error after accepting from the consent screen.

The error is coming when I am using "prompt".
So I used "consentType=Pricncipal" in extraQueryParameter config in place of "prompt" to give user_consent instead of admin_consent.

tanusha25 6 Reputation points

2022-08-24T13:51:42.977+00:00

I found an explanation on github that prompt in not configurable by user in older versions than 1.0.16.
So i used consentType for my application.

"One is prompt = admin_consent which is provided by you through the adal config and the other is prompt=none which is added by the library. By design, the prompt parameter is not configurable by the user. AcquireToken happens in a hidden iframe and its prompt value cannot be anything other than none.
In the latest version 1.0.16 we added code to remove the prompt parameter if provided by the user through extraQueryParameter in the adal config before making any api calls. Can you please try the latest version and see if it solves your issue."
Shweta Mathur 30,296 Reputation points Microsoft Employee Moderator

2022-08-26T05:10:03.64+00:00

@ tanusha25-1443 Thanks for sharing this.

Thanks,
Shweta

Answer 2

Shweta Mathur 30,296 Microsoft Employee Moderator

Hi @tanusha25 ,

Thanks for reaching out.

I understand you are trying to provide admin consent using prompt=consent and getting the error.

If you are still facing the issue? Could you please confirm are you using below URL for admin consent?

https://login.microsoftonline.com/<tenantID>/oauth2/authorize?response_type=token&client_id=<clientID>&resource=https://graph.microsoft.com&scope=openid&prompt=consent

I tried the above URL and able to consent the application successfully.
Did you try to consent from incognito window or from another browser and facing similar issue there as well?

Thanks,
Shweta

Shweta Mathur 30,296 Reputation points Microsoft Employee Moderator

2022-08-11T10:27:34.73+00:00

Hi @tanusha25 ,

Just wanted to check, are you able to resolve the issue?

Thanks,
Shweta

Share via

AADSTS9000411: The request is not propetly formatted. The parameter 'prompt' is duplicated.

2 answers

Your answer