Share via

HTTP connector for Geneva actions fails with "Bearer error=\"invalid_token\", error_description=\"The signature is invalid\""

Pradeep Sivakumar 1 Reputation point Microsoft Employee
2022-07-08T01:28:21.127+00:00

I am using Azure AD for authentication in my Geneva workflow, the code snippet is pasted below

{ "inputs": { "method": "POST", "uri": "https://debugbot.trafficmanager.net/DebugBareMetal?scenarioType=anyToAny&srcResourceUri=/subscriptions/01d55b53-0203-4c60-8849-205598b4078b/resourceGroups/np-g-5726727a-f2ae-482f-92a5-abb03eeb0fc4/providers/Microsoft.Compute/virtualMachines/c-np-dfae3b00&destResourceUri=/subscriptions/01d55b53-0203-4c60-8849-205598b4078b/resourceGroups/SDNAPPLIANCEINSIGHTS-GLOBAL-RESOURCES-EASTUS2EUAP/providers/Microsoft.Network/networkInterfaces/BN7-AZB-DR244-NA002_VNIC&cloudType=public&allowHistorical=false&durationInMinutes=0", "authentication": { "type": "ActiveDirectoryOAuth", "authority": "https://login.microsoftonline.com", "tenant": "33e01921-4d64-4f8c-a055-5bdaffd5e33d", "audience": "https://graph.microsoft.com", "clientId": "5b4f7b22-68b8-4f82-a5ad-b15d83303e9a", "secret": "@{parameters('HTTPAuthAppSecret')}" } } }

The AAD App is multi-tenant and has been allow-listed by the service url. Am i missing something to make this POST call? DO I need to setup my AAD app to expose an API?

Microsoft Security | Microsoft Entra | Microsoft Entra ID

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.