How to get Access Token Version 2.0

Question

Hi, I'm not able to get v2.0 access token. It always return v1.0 access token.
As per document https://learn.microsoft.com/en-us/azure/active-directory/develop/reference-app-manifest#accesstokenacceptedversion-attribute . This depends on the value of "accessTokenAcceptedVersion" parameter in the Manifest of the API.

I updated the value in manifest to 2 as below and use endpoint https://login.microsoftonline.com/{tenant_id}/oauth2/v2.0/token

"accessTokenAcceptedVersion": 2,  
"addIns": [],  
"allowPublicClient": null,  
"appId": "49f9xxxx-xxx-xxx-xx-xxxfd5",  

but I am still getting version 1.0 in access token as below:

"appid": "49f9xxxx-xxx-xxx-xx-xxxfd5",
"ver": "1.0",

Could you please help what I am missing here or is there any other value I need to set in manifest to get V2.0.

Answer 1

Hello @Shweta Mathur ,

Thanks for reaching out.

You have to make sure the accessTokenAcceptedVersion is set to 2 for the resource app (Web API) for which you are requesting the access token, and you need specify your resource app (Web API) as audience in the scope parameter while requesting token (For an example: scope=https://contosoApp.com/tasks.read ) as shown below, but if you use Microsoft web-hosted resources in the scope parameter such as Microsoft Graph: https://graph.microsoft.com / Microsoft SharePoint: https://microsoft.sharepoint-df.com etc.., then V2.0 version token doesn't support yet.

Outcome from my tenant Tenant:

An access token request call and decoded V2.0 version token

Hope this helps.

------
Please "Accept the answer" if the information helped you. This will help us and others in the community as well.

Answer 2

How to update "accessTokenAcceptedVersion": 2 programatically using azure ad ?