相关文章推荐
深情的煎鸡蛋  ·  the value of the ...·  1 月前    · 
帅气的猴子  ·  SCENIC转录因子分析实战---以Seur ...·  8 月前    · 
睿智的柠檬  ·  君实生物抗TIGIT单抗JS006临床试验申 ...·  8 月前    · 
有情有义的大白菜  ·  pip安装报错:is not a ...·  1 年前    · 
犯傻的海豚  ·  js获取文件后缀名方法 - 掘金·  1 年前    · 
打篮球的骆驼  ·  Consider revisiting ...·  1 年前    · 
Code  ›  How to solve InvalidAuthenticationToken error - Microsoft Q&A
access
https://learn.microsoft.com/en-us/answers/questions/1187901/how-to-solve-invalidauthenticationtoken-error
拉风的包子
6 月前

I have created an app in Azure and given the below permissions to Microsoft Graph.

  • APIConnectors.Read.All
  • Files.Read
  • Files.Read.All
  • Files.ReadWrite.All
  • offline_access
  • User.Read

    • https://graph.microsoft.com/v1.0/me/drive/root/children . I'm making a GET request to list files and folders in one drive root folder. But I'm getting the below error.

    "error": { "code": "InvalidAuthenticationToken", "message": "Access token validation failure. Invalid audience.", "innerError": { "date": "2023-03-09T06:01:36", "request-id": "0e614c70-c557-4599-8707-8351352cfcbd", "client-request-id": "0e614c70-c557-4599-8707-8351352cfcbd"

    Am I doing anything wrong here?

    Hi @ Dhruvin Moradiya

    This indicates that the API audience of your access token is inconsistent with the API endpoint you are calling.

    When you get an access token, you should set the values of Scope , Auth URL , Access Token URL to:

    Scope: https://graph.microsoft.com/.default offline_access

    Auth URL:https://login.microsoftonline.com/common/oauth2/v2.0/authorize

    Access Token URL:https://login.microsoftonline.com/common/oauth2/v2.0/token

    Call the Graph API:

    Hope this helps.

    If the reply is helpful, please click Accept Answer and kindly upvote it. If you have additional questions about this answer, please click Comment .

    "error": { "code": "InvalidAuthenticationToken", "message": "Access token validation failure. Invalid audience.", "innerError": { "date": "2023-03-09T06:56:36", "request-id": "2155e05d-bec5-4f7c-9b30-28a11f51ece4", "client-request-id": "2155e05d-bec5-4f7c-9b30-28a11f51ece4"

    Hi @Dhruvin Moradiya

    You should set the values for Auth URL and Access Token URL to:

    Auth URL:https://login.microsoftonline.com/{tenant id}/oauth2/v2.0/authorize

    Access Token URL:https://login.microsoftonline.com/{tenant id}/oauth2/v2.0/token

    Hi @CarlZhao-MSFT

    AuthURL : https://login.microsoftonline.com/common/oauth2/authorize

    Token URL : https://login.microsoftonline.com/common/oauth2/token
    What changes should I make to use list files in one drive using graph API?

    Hi @CarlZhao-MSFT
    Yes. It is a multi-tenant app. Building applications to access files from drives outside our organization as well. Currently, I'm making calls to my personal drive.
    I have selected Accounts in any organizational directory (Any Azure AD directory - Multitenant) and personal Microsoft accounts (e.g. Skype, Xbox) while creating the app.

    Yes. I want to make API calls to one drive.
    List files, folders, edited files after given datetime, deleted files, etc.

    Hi @CarlZhao-MSFT

    AuthURL : https://login.microsoftonline.com/common/oauth2/authorize

    Token URL : https://login.microsoftonline.com/common/oauth2/token
    Do you mean /common to /{tenant_id} ?

     
    推荐文章
    深情的煎鸡蛋  ·  the value of the 'access-control-allow-origin' header in the response must not be the wildcard '*' w
    1 月前
    帅气的猴子  ·  SCENIC转录因子分析实战---以Seurat的pbmc3K数据集为例 - Seurat_Satija - 简书
    8 月前
    睿智的柠檬  ·  君实生物抗TIGIT单抗JS006临床试验申请获受理_细胞
    8 月前
    有情有义的大白菜  ·  pip安装报错:is not a supported wheel on this platform - emanlee - 博客园
    1 年前
    犯傻的海豚  ·  js获取文件后缀名方法 - 掘金
    1 年前
    打篮球的骆驼  ·  Consider revisiting the entries above or defining a bean of type in your configuration._tianlin0203的博客-CSDN博客
    1 年前
    今天看啥   ·   Py中国   ·   codingpro   ·   藏经阁   ·   小百科   ·   link之家   ·   卧龙AI搜索
    删除内容请联系邮箱 2879853325@qq.com
    Code - 代码工具平台
    © 2024 ~ 沪ICP备11025650号