1
我试图用图来连接到wpf应用程序中的天蓝色AD。身份验证似乎很顺利,我得到一个访问令牌返回。我也可以使用这个令牌来获得关于我自己的基本信息。然而,当我试图从目录要求的东西我得到的错误:使用WPF应用程序使用图连接到Azure AD api
Code":"JWT10315 Signature validation failed. Keys tried:
然后一大堆其他的东西。一切似乎都没问题。该应用程序在Azure中注册。我设置了正确的访问权限。我无能为力。任何人都可以帮助我?我的代码如下。
//using Microsoft.IdentityModel.Clients.ActiveDirectory;
using Microsoft.Identity.Client;
using System;
using System.Collections.Generic;
using System.Linq;
using System.Text;
using System.Threading.Tasks;
using System.Windows;
using System.Windows.Controls;
using System.Windows.Data;
using System.Windows.Documents;
using System.Windows.Input;
using System.Windows.Media;
using System.Windows.Media.Imaging;
using System.Windows.Navigation;
using System.Windows.Shapes;
namespace O365_Graph_Connector
{
/// <summary>
/// Interaction logic for MainWindow.xaml
/// </summary>
public partial class MainWindow : Window
{
//graph endpoint
//$upn="userPrincipalName eq '" + $user.Id +"'"
string url = "https://graph.windows.net/mydomain.com/activities/signinEvents?api-version=beta&`$filter=userPrincipalName eq '[email protected]'";
//string url = "https://graph.microsoft.com/v1.0/me/";
//Scopes
string[] _scopes = new string[] { "Directory.Read.All" };
public MainWindow()
{
InitializeComponent();
txtOutput.Text = "bla";
}
private async void btnConnect_Click(object sender, RoutedEventArgs e)
{
AuthenticationResult authResult = null;
try
{
if (authResult == null)
{
authResult = await App.PublicClientApp.AcquireTokenSilentAsync(_scopes, App.PublicClientApp.Users.FirstOrDefault());
Console.WriteLine("authenticated");
}
}
catch (MsalUiRequiredException ex)
{
// A MsalUiRequiredException happened on AcquireTokenSilentAsync. This indicates you need to call AcquireTokenAsync to acquire a token
System.Diagnostics.Debug.WriteLine($"MsalUiRequiredException: {ex.Message}");
try
{
Console.WriteLine("trying method2");
authResult = await App.PublicClientApp.AcquireTokenAsync(_scopes);
}
catch (MsalException msalex)
{
txtOutput.Text = $"Error Acquiring Token:{System.Environment.NewLine}{msalex}";
}
}
catch (Exception ex)
{
txtOutput.Text = $"Error Acquiring Token Silently:{System.Environment.NewLine}{ex}";
return;
}
if (authResult != null)
{
//txtOutput.Text = await GetHttpContentWithToken(url, authResult.AccessToken);
String strResult = await GetHttpContentWithToken(url, authResult.AccessToken);
txtOutput.Text = strResult;
}
}
/// <summary>
/// Perform an HTTP GET request to a URL using an HTTP Authorization header
/// </summary>
/// <param name="url">The URL</param>
/// <param name="token">The token</param>
/// <returns>String containing the results of the GET operation</returns>
public async Task<string> GetHttpContentWithToken(string url, string token)
{
var httpClient = new System.Net.Http.HttpClient();
System.Net.Http.HttpResponseMessage response;
try
{
var request = new System.Net.Http.HttpRequestMessage(System.Net.Http.HttpMethod.Get, url);
//Add the token in Authorization header
request.Headers.Authorization = new System.Net.Http.Headers.AuthenticationHeaderValue("Bearer", token);
response = await httpClient.SendAsync(request);
var content = await response.Content.ReadAsStringAsync();
return content;
}
catch (Exception ex)
{
return ex.ToString();
}
}
private void btnSignOut_Click(object sender, RoutedEventArgs e)
{
if (App.PublicClientApp.Users.Any())
{
try
{
App.PublicClientApp.Remove(App.PublicClientApp.Users.FirstOrDefault());
this.txtOutput.Text = "User has signed-out";
//this.CallGraphButton.Visibility = Visibility.Visible;
//this.SignOutButton.Visibility = Visibility.Collapsed;
}
catch (MsalException ex)
{
txtOutput.Text = $"Error signing-out user: {ex.Message}";
}
}
}
}
}
我在你上一次截图中有excat错误信息。当我使用powershell它的作品。所以它看起来像Powershell变种与wpf变种不同。 IT也与我尝试访问的图表api有关。大多数人工作。 IT就是这个产生错误的人。我在这里有点不知所措。有人有一个工作代码的示例,通过WPF应用程序访问azureAD API?我不知道该怎么做。我们有azureAD溢价 – Molleke
当解码的访问令牌的appid与我的租户下的appid不匹配时,我收到了上述错误。我会建议你使用邮递员来模拟请求与您的访问令牌的登录活动API以缩小这个问题。 –
由于powershell可以工作,您可以跟踪网络并通过提琴手与您的应用程序进行比较。 –