我试图从我的网络应用程序中的Microsoft图表中获取数据.
当我调用AcquiretokenSilentAsync()时,我收到错误“无法以静默方式获取令牌.调用方法Acquiretoken”.
因此,我尝试使用AcquiretokenAsync()方法.这会获得一个令牌,但是当我尝试访问该资源时,我得到403 – 禁止.
我在fiddler测试了它,它的工作原理.
当我从AcquiretokenAsync()检查令牌并将其与从fiddler获得的令牌进行比较时,它大约是长度的1/3.我不知道这是否是一个问题,是否有修复?
有人知道这个问题的解决方案吗?
我的代码如下:
为gettoken():
public async static Task<AuthenticationResult> GetTokenAsync(AuthenticationContext ctx,string resourceId)
{
ClientCredential credential = new ClientCredential(OfficeSettings.ClientId,OfficeSettings.ClientSecret);
var userObjectId = ClaimsPrincipal.Current.FindFirst("http://schemas.microsoft.com/identity/claims/objectidentifier").Value;
UserIdentifier ident = new UserIdentifier(userObjectId,UserIdentifierType.UniqueId);
var redirectUrl = new Uri(HttpContext.Current.Request.Url.GetLeftPart(UriPartial.Path));
try
{
var result = await ctx.AcquiretokenSilentAsync(resourceId,credential,ident);
//var result = await ctx.AcquiretokenAsync(resourceId,credential);
LastAuthority = ctx.Authority;
return result;
}
catch (ADalexception e)
{
ctx.TokenCache.Clear();
return null;
}
catch (Exception ex)
{
throw ex;
}
}
GetUserEmail()(访问资源):
private const string _allUsersUrl = "https://graph.microsoft.com/beta/users?$filter=displayName%20eq%20'{0}'"; public static async Task<List<string>> GetUserEmails(List<string> displayNames) { var emails = new List<string>(); using (var client = new HttpClient()) { foreach (var name in displayNames) { var url = string.Format(_allUsersUrl,name.Replace(" ","+")).Replace(" ","%20"); using (var req = new HttpRequestMessage(HttpMethod.Get,url)) { var token = await GetToken(); req.Headers.Add("Authorization",string.Format("Bearer {0}",token)); req.Headers.TryAddWithoutValidation("Content-Type","application/json"); using (var response = await client.SendAsync(req)) { //Todo: Forbidden error message. However,token seems to be retrieved correctly var content = await response.Content.ReadAsstringAsync(); foreach (var item in JObject.Parse(content)["value"]) { emails.Add(item["userPrincipalName"].ToString()); } } } } } return emails; }
编辑:
我还检查了缓存的内容,并将其与传递给AcquiretokenSilentAsync()的参数进行了比较,一切似乎都匹配.
解决方法
版权声明:本文内容由互联网用户自发贡献,该文观点与技术仅代表作者本人。本站仅提供信息存储空间服务,不拥有所有权,不承担相关法律责任。如发现本站有涉嫌侵权/违法违规的内容, 请发送邮件至 [email protected] 举报,一经查实,本站将立刻删除。
