Azure API Management
An Azure service that provides a hybrid, multi-cloud management platform for APIs.
APIM dev portal test console OAuth: wrong aud claim
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(19.2, 87%, 11%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ED9%3C/text%3E%3C/svg%3E)
Dev 9
86
Reputation points
We have just set up an OAuth server, for using the developer portal to test API calls to protected backends, as per recipe
Our backend will use App roles, no user sign-in, so in the default scope field in the OAuth config, I put the application ID URI in the form api://<Backend Application (client) ID>
Upon calling the API from the test portal, we get a 401.71 error, and upon inspection the audience claim in the token is mostly zeros:
"aud": "00000002-0000-0000-c000-000000000000",
Does anyone have any clues to why this is happening?
Azure API Management
-
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(128, 8%, 22%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EA%3C/text%3E%3C/svg%3E)
Anonymous2024-05-17T11:25:14.47+00:00 Can you provide the config you're using? (Redacted where appropriate)
That uuid you are seeing is for Entra itself so I dont think you're config is quite correct. It should be the app you're requesting (as you noted)
Sign in to comment
Sign in to answer