OAuth expires_in value is incorrect

Question

OAuth expires_in value is incorrect

scarecrow kakashi 246

I registed an Azure app show as below

And get token following device code grant, https://learn.microsoft.com/en-us/azure/active-directory/develop/v2-oauth2-device-code .

Step 1.1 Get user_code and device_code

Step 1.2 After 300 seconds visit the https://microsoft.com/devicelogin in the browser , and login with test_oauth_graph@harsh.com .com account

Why does user_code become invalid after only 300 seconds?

Try another request.
Step 2.1 Get user_code and device_code

Step 2.2 After 600 seconds visit the https://microsoft.com/devicelogin in the browser , and login with ******@scarecrowkakashihotmail.onmicrosoft.com account

Why user_code is valid longer than 600 seconds in Step 2.1-2.2, but user_code is valid less than 300 seconds in Step 1.1-1.2?

Akshay-MSFT 17,951 Reputation points Microsoft Employee Moderator

2022-11-03T04:52:46.113+00:00

Hello @scarecrow kakashi ,

I was able to repro this in my lab and got similar result for a personal account where "User Code" did not work. I am checking this internally and will get back to you.

Thanks,
Akshay Kaushik
Akshay-MSFT 17,951 Reputation points Microsoft Employee Moderator

2022-11-18T05:54:48.637+00:00

Hello @scarecrow kakashi ,

Please be informed that this has been identified as a bug. Now the dev team in working on this for a fix. I have updated the answer. Please "Accept the answer" and "Upvote" if the answer did help you. This will help us and others in the community as well.

Thanks for highlighting this issue.

Thanks,
Akshay Kaushik

Accepted answer

0 additional answers

Your answer

Akshay-MSFT 17,951 Reputation points Microsoft Employee Moderator

2022-11-03T04:52:46.113+00:00

Hello @scarecrow kakashi ,

I was able to repro this in my lab and got similar result for a personal account where "User Code" did not work. I am checking this internally and will get back to you.

Thanks,
Akshay Kaushik
Akshay-MSFT 17,951 Reputation points Microsoft Employee Moderator

2022-11-18T05:54:48.637+00:00

Hello @scarecrow kakashi ,

Please be informed that this has been identified as a bug. Now the dev team in working on this for a fix. I have updated the answer. Please "Accept the answer" and "Upvote" if the answer did help you. This will help us and others in the community as well.

Thanks for highlighting this issue.

Thanks,
Akshay Kaushik

Answer 1

Hello @scarecrow kakashi ,

We were able to engage the product group and have identified this to be a bug.
Thanks for highlighting this issue on consumer and common endpoints. Our dev team is now working on this.

Workaround:

The code is not accepted whenever the request is routed to common endpoint.
Like in first case /common endpoint is used which causes the issue.
In 2nd case /organization endpoint is used which works fine with all Guest and wok accounts. I am yet to hear from the dev team on this. Will keep you posted with further updates here.

Let me know if you have any queries.

Thanks,
Akshay Kaushik

Please "Accept the answer" and "Upvote" if the suggestion works as per your business need. This will help us and others in the community as well.

Share via

OAuth expires_in value is incorrect

0 additional answers

Your answer