AADSTS50049 error using Microsoft.identity.Client, api is public so...

Question

AADSTS50049 error using Microsoft.identity.Client, api is public so...

Hannu S 6

Tried a lot of different things, but I probably have somehthing wrong on my mind...

Some help would be great.

Error:

AADSTS50049: Unknown or invalid instance.

Trace ID: e438b040-a6a5-498f-adf8-791940c71600

Correlation ID: a5bb4fa8-4d4b-477f-8a6c-aef8f577bc2a

Timestamp: 2023-03-22 14:48:54Z

Code:


AADSTS50049: Unknown or invalid instance.
Trace ID: e438b040-a6a5-498f-adf8-791940c71600
Correlation ID: a5bb4fa8-4d4b-477f-8a6c-aef8f577bc2a
Timestamp: 2023-03-22 14:48:54Z
Code:

var clientId = Guid.NewGuid().ToString(); 
            var policy = "B2C_1_Policy";
            var redirecturi = "https://online-genesis-serviceapi.azurewebsites.net";
            var authority = "https://thermialogin.b2clogin.com/thermialogin.onmicrosoft.com/B2C_1A_SignUpOrSigninOnline/";
            //var pca = new PublicClientApplication(clientid, authority) { RedirectUri = redirecturi };
            string[] scopes = new string[] { "*" };
            IPublicClientApplication app;
            app = PublicClientApplicationBuilder.Create(clientId)
                                  .WithAuthority(authority)

                                  .Build();
            // var accounts = await app.GetAccountsAsync();
            AuthenticationResult result = null;
            try
            {
                result = await app.AcquireTokenByUsernamePassword(scopes,

Shweta Mathur 30,431 Reputation points Microsoft Employee Moderator

2023-03-31T06:40:00.9866667+00:00

Hi @Hannu S ,

Just checking in to see if the below answer helped. If this answers your query, please don’t forget to click "Accept Answer" which might be beneficial to other community members reading this thread. And, if you have any further query do let us know.

1 answer

Your answer

Shweta Mathur 30,431 Reputation points Microsoft Employee Moderator

2023-03-31T06:40:00.9866667+00:00

Hi @Hannu S ,

Just checking in to see if the below answer helped. If this answers your query, please don’t forget to click "Accept Answer" which might be beneficial to other community members reading this thread. And, if you have any further query do let us know.

Answer 1

Alfredo Revilla - Upwork Top Talent | IAM SWE SWA 27,536 Moderator

Hello @Hannu S , to avoid getting the AADSTS50049: Unknown or invalid instance error you need to replace the WithAuthority(string) call with WithB2CAuthority(string) which is B2C specific. For more information take a look to Authority for an Azure AD B2C tenant and policy.

Let us know if you need additional assistance. If the answer was helpful, please accept it and rate it so that others facing similar issues can more easily find a solution.

Alfredo Revilla - Upwork Top Talent | IAM SWE SWA 27,536 Reputation points Moderator

2023-03-23T07:57:07.1266667+00:00

Hi @Hannu S , Collect a network trace with Fiddler and share the exported results minus PII for further debugging.

Hannu S 6

Thx Alfredo!

It fixed one issue.

Then I hit a next one, authority was wrongly formed:

var authority = "https://thermialogin.b2clogin.com/thermialogin.onmicrosoft.com/B2C_1_SignUpOrSigninOnline/";
//To this
var authority = "https://thermialogin.b2clogin.com/tfp/thermialogin.b2clogin.com/B2C_1A_SignUpOrSigninOnline";

That worked.

But then actual authentication gives really odd error:

An error response was returned by the OAuth2 server, but it could not be parsed. Please inspect the exception properties for details.

Well response statusCode: 404 ???

ResponseBody: "The resource you are looking for has been removed, had its name changed, or is temporarily unavailable."

Again wondering why?

            var authority = "https://thermialogin.b2clogin.com/tfp/thermialogin.b2clogin.com/B2C_1A_SignUpOrSigninOnline";
            //var pca = new PublicClientApplication(clientid, authority) { RedirectUri = redirecturi };
            string[] scopes = new string[] { "" }; //"09ea4903-9e95-45fe-ae1f-e3b7d32fa385", "offline_access", 
            IPublicClientApplication app;
            app = PublicClientApplicationBuilder.Create(clientId)
                                  .WithB2CAuthority(authority)

                                  .Build();
            // var accounts = await app.GetAccountsAsync();
            AuthenticationResult result = null;
            try
            {
                result = await app.AcquireTokenByUsernamePassword(scopes,
                                                        "*****",
                                                         "****")
                          .ExecuteAsync();
            }
            catch (Exception ex)
            { 
            Console.WriteLine(ex.Message); 
            }
            Console.WriteLine(result.Account.Username);

Hannu S 6 Reputation points

2023-03-24T15:21:56.6033333+00:00

https://thermialogin.b2clogin.com/tfp/thermialogin.b2clogin.com/b2c_1a_signuporsigninonline/oauth2/v2.0/token

gives 404

Errors messages are so enlighting.
Alfredo Revilla - Upwork Top Talent | IAM SWE SWA 27,536 Reputation points Moderator

2023-03-24T16:08:52.52+00:00

Hello, apologies for the delay. The URL is malformed. This is the correct one https://thermialogin.b2clogin.com/tfp/thermialogin.onmicrosoft.com/b2c_1a_signuporsigninonline/oauth2/v2.0/token

Share via

AADSTS50049 error using Microsoft.identity.Client, api is public so...

1 answer

Your answer