Share via

Azure b2c report endpoint authresp report invalid id token while jwt.ms can decode that token

Seangmengq long 1 Reputation point
2021-01-01T09:46:48.033+00:00

I did testing with azure ad b2c user flow using custom idP. Azure b2c report endpoint authresp report invalid id token while jwt.ms can decode that token. So why it is invalid id token?

Please refer to the detail in the debug message blow:

Thanks.

Request URL: https://ssocam.b2clogin.com/ssocam.onmicrosoft.com/oauth2/authresp?state=StateProperties%3DeyJTSUQiOiJ4LW1zLWNwaW0tcmM6OGQzNzk4NGMtOGFiNi00OGZjLTljYmUtMjgyMWRjYmMzYjdlIiwiVElEIjoiMjNkODk5ZDEtOWQ2Ny00MjdkLWI4NzEtOTNjZWNiMzA0YTkyIiwiVE9JRCI6ImE2YzIyYzcwLTQ1Y2UtNDMzNy04ZDhjLWFiNmMzZTYxOWJiZCJ9&id_token=eyJhbGciOiJSUzI1NiIsImprdSI6Imh0dHBzOlwvXC9kYTZhMTAyNGU1Njkubmdyb2suaW9cL3BocE9wXC9vcC5qd2siLCJraWQiOiJQSFBPUC0wMFMifQ.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.nuumfcMqX-PwWhs3EyemSldaBgBE4NYcUcLMCnxaqHoyfk7f1BQ6AVm_dx3A1kIGdpnJrqaEtHuhX6dtFB5gcUxeDwKpaSRpOpm5m6mRHtV_hN2KEynPDOjKCyfgPmrO_WWq134L0P1c3Ssc8WTf53h0cCoCWSewhX96OLbOM6YJcCH8bMft42H6LZWq4SgeVNgpNh2TPZXDA_2AYIkjjQDvnp87tFheQMw8le0VFL-vbxogT_haaSBqHL6mbJHzMOpOtEKeM3XutRwUjlP_vfws2dsFX8U0S-f8GgmxIHcK580AWY0TAfhDuWtC7OmL1CKaivx_cUYh88XbxqmAEA&session_state=574e4be1a0e13bb221207e9f5feaa95df0996e17923f440d5dd8ab2944747638.403e7b7991d8fa88c8c1c5924f1d1aec
Request Method: GET
Status Code: 302 Found
Remote Address: 40.126.12.34:443
Referrer Policy: strict-origin-when-cross-origin
Cache-Control: private
Content-Length: 401
Content-Type: text/html; charset=utf-8
Date: Fri, 01 Jan 2021 09:26:54 GMT
Location: https://jwt.ms/#error=invalid_request&error_description=AADB2C90240%3a+The+provided+token+is+malformed+and+could+not+be+parsed.+Please+provide+another+token+and+try+again.%0d%0aCorrelation+ID%3a+23d899d1-9d67-427d-b871-93cecb304a92%0d%0aTimestamp%3a+2021-01-01+09%3a26%3a55Z%0d%0a
Set-Cookie: x-ms-cpim-rc:8d37984c-8ab6-48fc-9cbe-2821dcbc3b7e=; domain=ssocam.b2clogin.com; expires=Sat, 01-Jan-2011 09:26:55 GMT; path=/; SameSite=None; secure; HttpOnly
Set-Cookie: x-ms-cpim-sso:ssocam.onmicrosoft.com_0=; domain=ssocam.b2clogin.com; expires=Sat, 01-Jan-2011 09:26:55 GMT; path=/; SameSite=None; secure; HttpOnly
Set-Cookie: x-ms-cpim-cache|0znyi2edfuk4czpoyzbkkg_0=; domain=ssocam.b2clogin.com; expires=Sat, 01-Jan-2011 09:26:55 GMT; path=/; SameSite=None; secure; HttpOnly
Set-Cookie: x-ms-cpim-trans=; domain=ssocam.b2clogin.com; expires=Sat, 01-Jan-2011 09:26:55 GMT; path=/; SameSite=None; secure; HttpOnly
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Frame-Options: DENY
x-ms-gateway-requestid: 4288c52c-d51b-436d-a9ae-0806bc0845ed
X-XSS-Protection: 1; mode=block
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.9
Accept-Encoding: gzip, deflate, br
Accept-Language: en-PH,en;q=0.9,km-KH;q=0.8,km;q=0.7,en-US;q=0.6
Cache-Control: max-age=0
Connection: keep-alive
Cookie: x-ms-cpim-rc:856b3442-500d-43f6-9446-f8ce4142e735=WTE3VnQzWWJ3NWNiNTcxQTZSSlNwbDNUVlovbDlpa1VZUG41eHJpdFRDcEZHOXRrdE1Jc0dPZ2R4Unk3SmJuYU1QQlM1Q0NUR0pnMldIR2tkODBUb0E9PTsyMDIwLTEyLTI3VDA2OjEwOjU5LjE3Njk4MDlaO085djJpRm01MTFpVk83aC9OKzhXeVE9PTt7IlRhcmdldEVudGl0eSI6IkZhY2Vib29rRXhjaGFuZ2UiLCJPcmNoZXN0cmF0aW9uU3RlcCI6Mn0=; x-ms-cpim-rc:b0ac5f47-e758-4b8e-b495-9bff60872799=U2orYzNvL1hUckVjN1VMWUNwSXdtcFBOTTJsQWxYWVBwZDdCeG55YzZ3bXpJcmJrQmtoNXg1YnltQ3NMVjBQczlmcERtY0J0NkVMRXhqZ3lrTEE1MHc9PTsyMDIwLTEyLTI3VDA2OjQxOjQxLjg5NzM2MDlaO0NSOEh2bFBMMlZXZVFuc0JYbWxZZ0E9PTt7IlRhcmdldEVudGl0eSI6IkZhY2Vib29rRXhjaGFuZ2UiLCJPcmNoZXN0cmF0aW9uU3RlcCI6Mn0=; x-ms-cpim-rc:7bb2ce3a-000b-4011-864b-9acbe4de1231=NzVxMjdLZ2ZERElVOG10VW15dGhzZ2JzckY0YzRHQTVuOEVqT1RxT1FFY21LM2JPQXFwZXYrc0RLUnk5RWNtcC9hZUdsUXpPOTZ1R3dUVGkzWFk0ZHc9PTsyMDIwLTEyLTI3VDE0OjMwOjI4LjgyNzQ5OFo7NVZVS2Yra0UrS2RSZFN1dDRxanhmZz09O3siVGFyZ2V0RW50aXR5IjoiRmFjZWJvb2tFeGNoYW5nZSIsIk9yY2hlc3RyYXRpb25TdGVwIjoyfQ==; x-ms-cpim-rc:7ec8815b-3143-4aa8-a1a1-98408753676d=MTVkd3k5VkcycHp0QnBubkFpWWgrMDZqWk1EV2M3ODl5Tk53dEs5QVcxWG1tdGFWQUtZUEFTdTR2aHcydENZNGJBNmMvMFhkd3JRdk9HMnNjN3l6anc9PTsyMDIxLTAxLTAxVDA3OjI3OjM1LjExNjcwNjRaO1g3eFY0UzR2RE9JSXlPY200NTVmcEE9PTt7IlRhcmdldEVudGl0eSI6IlBIUElEUCIsIk9yY2hlc3RyYXRpb25TdGVwIjoyfQ==; x-ms-cpim-rc:305dfacf-2149-4336-95e5-7d5355e5f7c1=NTVIV0RxL3p5YnBYTXE3WnkybVBZcU5kaG5WaUdrMXFDZnhXcFZQVTVaS1RBNHZ6QzBKSVlVZmV5UVBqK1RrbFlaTElMV053b2dIU1lzaXN5NXFkbGc9PTsyMDIxLTAxLTAxVDA3OjI4OjQ4LjUzODgzMjdaO0ZzcGlScEJxcHl0OThsWE1XY1I1QVE9PTt7IlRhcmdldEVudGl0eSI6IlBIUElEUCIsIk9yY2hlc3RyYXRpb25TdGVwIjoyfQ==; x-ms-cpim-csrf=Qi9aVVNTOTFjZkxBNy9vQ0F0cTBHL0R3VU52a3ZQcGp6RTh0NFFUN3dXNTJGN2tsbXRmVjNiZlZKaXRVd3dNMVh3TUtxVzcrbzRBOXBOaTBPZjlENFE9PTsyMDIxLTAxLTAxVDA5OjI2OjM0LjY2Njc0NTFaO1RCU2xuWnFTaGZBRldyZEtVSkg4aFE9PTt7Ik9yY2hlc3RyYXRpb25TdGVwIjoxfQ==; x-ms-cpim-sso:ssocam.onmicrosoft.com_0=m1./GeV2mCHyiGd/wMf.w0n3Plqrvk2Vctjxd8NK2Q==.0.iBwih2FMe8LKopW6RLRuuYfA2tPdtLYsp7oHrhbcAYQ9RBI4YWNVqN2pJnAK2cObz3gIlmzs2eUOzWza+UT+bJHguCCvhCFqmUJqaWT7Pl2UiAPl7QYadhK+5YRH8dd9OI5H1hJiGhsxPxkqKBR9VcfkBkowI8eoZHk/MdBxs3lvsMczbvrfIqPPbWI5kU/Wg/Fd7nez5I7bmcayXs+L0pDSlnZ7ev4m5uj7eKLw1ysMoShI0xnYn9HiXdGOuA0YEBjsBIu1cKc2p/KAn+z1CSUBVTEb9+lSMBpHnzuX4syohwP2fzx5h8jGcxPS5pSTI5k3leGSdBtmk13NdFxSMdLP9o0rvRG+xVJgJmlqmODADiH3lSJxNY6vbyz15+VVyBrzllZzkDkWq1jieJTd1RcFC4CHHTsjXcp7bf47quffsOQBzuvdo+bUKHAjttzxJRM3IQLtPixncUCvo284HfvTWkBPwNfFBl0=; x-ms-cpim-rc:8d37984c-8ab6-48fc-9cbe-2821dcbc3b7e=VHc4ak0rUmtSQ3JmaHpOaVZPVnAvQTIveERGdmZ5VS9wZSt0ZEhaWEhFRC9QSFFTY1REMVJyQ01taVNUTW9SU2JUem1XSWgzTnRNeDVtUFNqMXhmQXc9PTsyMDIxLTAxLTAxVDA5OjI2OjQ2LjM4NTA5MjFaOzhxNDMvelVnSlMvNFFWeklKeWdWQWc9PTt7IlRhcmdldEVudGl0eSI6IlBIUElEUCIsIk9yY2hlc3RyYXRpb25TdGVwIjoyfQ==; x-ms-cpim-cache|0znyi2edfuk4czpoyzbkkg_0=m1.K1DORcLlrYIP+0gv.e3ag3Vp9VHhNLcKfT1HoIQ==.0.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; x-ms-cpim-trans=eyJUX0RJQyI6W3siSSI6IjIzZDg5OWQxLTlkNjctNDI3ZC1iODcxLTkzY2VjYjMwNGE5MiIsIlQiOiJzc29jYW0ub25taWNyb3NvZnQuY29tIiwiUCI6IkIyQ18xX3Npbmdpbl9zaWdudXAiLCJDIjoiNTYzZTRmY2YtYWFiZS00YmMyLTk4NGQtODk5MWYzOGE1OGQ3IiwiUyI6MiwiTSI6e30sIkQiOjYzNzQ1MDg5OTk0NTY4MjY5NH1dLCJDX0lEIjoiMjNkODk5ZDEtOWQ2Ny00MjdkLWI4NzEtOTNjZWNiMzA0YTkyIn0=
Host: ssocam.b2clogin.com
Referer: https://da6a1024e569.ngrok.io/
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Sec-Fetch-User: ?1
Upgrade-Insecure-Requests: 1
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/87.0.4280.88 Safari/537.36
state: StateProperties=eyJTSUQiOiJ4LW1zLWNwaW0tcmM6OGQzNzk4NGMtOGFiNi00OGZjLTljYmUtMjgyMWRjYmMzYjdlIiwiVElEIjoiMjNkODk5ZDEtOWQ2Ny00MjdkLWI4NzEtOTNjZWNiMzA0YTkyIiwiVE9JRCI6ImE2YzIyYzcwLTQ1Y2UtNDMzNy04ZDhjLWFiNmMzZTYxOWJiZCJ9
id_token: eyJhbGciOiJSUzI1NiIsImprdSI6Imh0dHBzOlwvXC9kYTZhMTAyNGU1Njkubmdyb2suaW9cL3BocE9wXC9vcC5qd2siLCJraWQiOiJQSFBPUC0wMFMifQ.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.nuumfcMqX-PwWhs3EyemSldaBgBE4NYcUcLMCnxaqHoyfk7f1BQ6AVm_dx3A1kIGdpnJrqaEtHuhX6dtFB5gcUxeDwKpaSRpOpm5m6mRHtV_hN2KEynPDOjKCyfgPmrO_WWq134L0P1c3Ssc8WTf53h0cCoCWSewhX96OLbOM6YJcCH8bMft42H6LZWq4SgeVNgpNh2TPZXDA_2AYIkjjQDvnp87tFheQMw8le0VFL-vbxogT_haaSBqHL6mbJHzMOpOtEKeM3XutRwUjlP_vfws2dsFX8U0S-f8GgmxIHcK580AWY0TAfhDuWtC7OmL1CKaivx_cUYh88XbxqmAEA

session_state: 574e4be1a0e13bb221207e9f5feaa95df0996e17923f440d5dd8ab2944747638.403e7b7991d8fa88c8c1c5924f1d1aec

Microsoft Security | Microsoft Entra | Microsoft Entra External ID
0 comments

1 answer

Sort by: Most helpful
Most helpful Newest Oldest
  1. AmanpreetSingh-MSFT 56,871 Reputation points Moderator
    2021-01-04T08:55:44.06+00:00

    Hi @Seangmengq long · Welcome to Q&A platform and thank you for your query.

    The error could be due to the Japanese characters in the ID token. Could you please try with a different user account whose attributes are configured in English language and not Japanese language.

    If the issue occurs only when Japanese characters are passed in ID token, I would suggest you to open a support ticket and get a product bug opened for this issue.

    -----------------------------------------------------------------------------------------------------------

    Please "Accept the answer" if the information helped you. This will help us and others in the community as well.

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.