This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(217.60000000000002, 96%, 31%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EFS%3C/text%3E%3C/svg%3E)
Hi, I am new to azure counting only on the ongoing project experience. To give a background about the issue that I am facing with Azure active directory is,I have to implement authentication/authorization for my application that will be hosted on Public cloud but will be accessible to users from a particular domain only(single tenant).
Attachment includes code that I have written to get the logged in User details. when trying to run the application,below is the error that I am getting:
{ "error": { "code": "Request_ResourceNotFound", "message": "Resource '4420a373-e920-4294-b479-750d6a1845c5' does not exist or one of its queried reference-property objects are not present.", "innerError": { "request-id": "4ad3af1d-e063-4863-806c-6fc28ee8e0bc", "date": "2019-12-14T08:09:53" } } }
I have cross verified :
1- ClientId,SecretId,TenantId of my application given in the code
2- The token that I am getting through the code using jwt.io.
3- My User name is already there in the Azure Active directory as well.
4- Read User profile scope is granted to my account
When trying to access the api from Graph explorer using https://graph.microsoft.com/v1.0/me/ I am able to access my details.
But when trying to run this to code,I get below error.
Any help would be appreciated on this.
Regards.
Hi
You are obtaining a token via the confidential client flow, meaning you not running in the context of a user. Thus you should not be using the /me endpoint, but /users/objectID one.
Or obtain a token via some of the delegate permissions flows.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(54.400000000000006, 57.99999999999999%, 15%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESF%3C/text%3E%3C/svg%3E)
Hi,
Yes. I am obtaining a token via a confidential client.Also,Yes the application is not running under the context of the logged in user.
I did check that the token i am getting from the code gives me partial information ie only the application details and the logged in user details is missing & so is the error "Request_ResourceNotFound".
Even for using object ID, I would need the user context right? Is this where delegate permission comes?
Or do I have to specifically implement OpenId Connect to get the current user?
Is there any reference article I could use that will help me resolve this?
P. S:Please excuse me if the queries/answers sound doltish
No, you can use the users/ObjectID endpoint just fine. You simply cannot use /me, as there is no current user.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(236.8, 75%, 32%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMB%3C/text%3E%3C/svg%3E)
Thanks it get resolved as we cannot use /me, as there is no current user