Microsoft Graph Is Displaying a 403 Client Error

Austin Lawton 0 Reputation points
2023-05-14T06:10:32.1166667+00:00

I must not be using some of the IDs correctly and would love some help to work through this authorization process with communication from Azure authentication, to using an adaptive card that goes through Microsoft Graph. I have created some error handling logs and this is what has been displayed:

urllib3.util.retry - DEBUG - Converted retries value: 1 -> Retry(total=1, connect=None, read=None, redirect=None, status=None)
urllib3.connectionpool - DEBUG - Starting new HTTPS connection (1): login.microsoftonline.com:443
urllib3.connectionpool - DEBUG - https://login.microsoftonline.com:443 "GET /9c9f513-f4a9-48ba-aed7-f5d698c5af0f/v2.0/.well-known/openid-configuration HTTP/1.1" 200 1753
msal.authority - DEBUG - openid_config = {'token_endpoint': 'https://login.microsoftonline.com/9c9f5133-f4a9-48ba-aed7-f5d698c5af0f/oauth2/v2.0/token', 'token_endpoint_auth_methods_supported': ['client_secret_post', 'private_key_jwt', 'client_secret_basic'], 'jwks_uri': 'https://login.microsoftonline.com/9c9f5133-f4a9-48ba-aed7-f5d698c5af0f/discovery/v2.0/keys', 'response_modes_supported': ['query', 'fragment', 'form_post'], 'subject_types_supported': ['pairwise'], 'id_token_signing_alg_values_supported': ['RS256'], 'response_types_supported': ['code', 'id_token', 'code id_token', 'id_token token'], 'scopes_supported': ['openid', 'profile', 'email', 'offline_access'], 'issuer': 'https://login.microsoftonline.com/9c9f5133-f4a9-48ba-aed7-f5d698c5af0f/v2.0', 'request_uri_parameter_supported': False, 'userinfo_endpoint': 'https://graph.microsoft.com/oidc/userinfo', 'authorization_endpoint': 'https://login.microsoftonline.com/9c9f5133-f4a9-48ba-aed7-f5d698c5af0f/oauth2/v2.0/authorize', 'device_authorization_endpoint': 'https://login.microsoftonline.com/9c9f5133-f4a9-48ba-aed7-f5d698c5af0f/oauth2/v2.0/devicecode', 'http_logout_supported': True, 'frontchannel_logout_supported': True, 'end_session_endpoint': 'https://login.microsoftonline.com/9c9f5133-f4a9-48ba-aed7-f5d698c5af0f/oauth2/v2.0/logout', 'claims_supported': ['sub', 'iss', 'cloud_instance_name', 'cloud_instance_host_name', 'cloud_graph_host_name', 'msgraph_host', 'aud', 'exp', 'iat', 'auth_time', 'acr', 'nonce', 'preferred_username', 'name', 'tid', 'ver', 'at_hash', 'c_hash', 'email'], 'kerberos_endpoint': 'https://login.microsoftonline.com/9c9f5133-f4a9-48ba-aed7-f5d698c5af0f/kerberos', 'tenant_region_scope': 'NA', 'cloud_instance_name': 'microsoftonline.com', 'cloud_graph_host_name': 'graph.windows.net', 'msgraph_host': 'graph.microsoft.com', 'rbac_url': 'https://pas.windows.net'}
msal.application - DEBUG - Broker enabled? False
msal.application - DEBUG - Region to be used: None
root - INFO - Read and parsed shuttle data from file: SHUT.txt
root - ERROR - Issue not found in shuttle data: TRANSPORTER: SHUT0866, STATE: M, CURRENT POS: S01.026.21.01.C01, WEIGHT: 15, Blocked paths: ['S01.026.21.01.C01'], Blocked containers: ['AB20981069', 'H']
msal.application - DEBUG - Found 0 RTs matching {'environment': 'login.microsoftonline.com', 'home_account_id': None, 'family_id': '1'}
msal.application - DEBUG - Found 0 RTs matching {'environment': 'login.microsoftonline.com', 'home_account_id': None, 'client_id': '8227dcf7-ce61-49f4-bacd-6ca636ed3758'}
urllib3.connectionpool - DEBUG - https://login.microsoftonline.com:443 "GET /common/discovery/instance?api-version=1.1&authorization_endpoint=https://login.microsoftonline.com/common/oauth2/authorize HTTP/1.1" 200 945
msal.telemetry - DEBUG - Generate or reuse correlation_id: 094b3e4c-381e-463d-b80f-082483bb3c9f
urllib3.connectionpool - DEBUG - https://login.microsoftonline.com:443 "POST /9c9f5133-f4a9-48ba-aed7-f5d698c5af0f/oauth2/v2.0/token HTTP/1.1" 200 2561
msal.token_cache - DEBUG - event={
    "client_id": "8227dcf7-ce61-49f4-bacd-6ca636ed3758",
    "data": {
        "claims": null,
        "scope": [
            "https://graph.microsoft.com/.default"
        ]
    },
    "environment": "login.microsoftonline.com",
    "grant_type": "client_credentials",
    "params": null,
    "response": {
        "access_token": "********",
        "expires_in": 3599,
        "ext_expires_in": 3599,
        "token_type": "Bearer"
    },
    "scope": [
        "https://graph.microsoft.com/.default"
    ],
    "token_endpoint": "https://login.microsoftonline.com/9c9f5133-f4a9-48ba-aed7-f5d698c5af0f/oauth2/v2.0/token"
}
root - INFO - Successfully acquired token.
urllib3.connectionpool - DEBUG - Starting new HTTPS connection (1): graph.microsoft.com:443
urllib3.connectionpool - DEBUG - https://graph.microsoft.com:443 "POST /v1.0/teams/19%3AyMJ4oFnZlsdOoifWL1Ox8SowKk06s0IC4FcifBIegm01%40thread.tacv2/channels/19%3A621efe57bea84c72921eeeb49ef57bac%40thread.tacv2/messages HTTP/1.1" 403 None
root - ERROR - Error sending message: 403 Client Error: Forbidden for url: https://graph.microsoft.com/v1.0/teams/19%3AyMJ4oFnZlsdOoifWL1Ox8SowKk06s0IC4FcifBIegm01%40thread.tacv2/channels/19%3A621efe57bea84c72921eeeb49ef57bac%40thread.tacv2/messages
root - ERROR - Error in the main loop: Error sending message: 403 Client Error: Forbidden for url: https://graph.microsoft.com/v1.0/teams/19%3AyMJ4oFnZlsdOoifWL1Ox8SowKk06s0IC4FcifBIegm01%40thread.tacv2/channels/19%3A621efe57bea84c72921eeeb49ef57bac%40thread.tacv2/messages

Microsoft Graph
Microsoft Graph
A Microsoft programmability model that exposes REST APIs and client libraries to access data on Microsoft 365 services.
11,421 questions
Not Monitored
Not Monitored
Tag not monitored by Microsoft.
37,754 questions
{count} votes