Lightrun
question-mark
Stuck on an issue?

Lightrun Answers was designed to reduce the constant googling that comes with debugging 3rd party libraries. It collects links to all the places you might be looking at while hunting down a tough bug.

And, if you’re still stuck at the end, we’re happy to hop on a call to see how we can help out.

OAuth 2.0 On-Behalf-Of Flow for Microsoft Personal Accounts

See original GitHub issue

Please provide us with the following information:

This issue is for a: (mark with an x)

- [ ] bug report -> please search issues before submitting
- [ ] feature request
- [x] documentation issue or request
- [ ] regression (a behavior that used to work and stopped in a new release)

Minimal steps to reproduce

Any log messages given by the failure

Expected/desired behavior

Please clarify what do you mean by “doesn’t work” in:

“Current limitations: The on-behalf-of flow does not currently work for Microsoft Personal accounts.” The MSDN documentation implies that OBO flow works for Microsoft Personal accounts.

OS and Version?

Windows 7, 8 or 10. Linux (which distribution). macOS (Yosemite? El Capitan? Sierra?)

Versions

Mention any other details that might be useful

Thanks! We’ll be in touch soon.

Issue Analytics

  • State:closed
  • Created 5 years ago
  • Comments:6 (3 by maintainers)

github_iconTop GitHub Comments

1reaction
jmprieurcommented, Apr 10, 2019

@nkwolf I’ve updated the descriptions.

  • OBO works for MSA.
  • but the consent needs to happen on the Web API
    • and therefore the recommendation is to use the same client ID for the Web API and the client (and pass it and use it directly)
0reactions
jmprieurcommented, Oct 18, 2019

This is now working.

Read more comments on GitHub >

github_iconTop Results From Across the Web

OAuth 2.0 client credentials flow on the Microsoft identity ...
The OAuth 2.0 client credentials grant flow permits a web service (confidential client) to use its own credentials, instead of impersonating ...
Read more >
v1-oauth2-on-behalf-of-flow.md
The OAuth 2.0 On-Behalf-Of (OBO) flow enables an application that invokes a service or web API to pass user authentication to another service...
Read more >
Microsoft identity platform and OAuth 2.0 authorization ...
The OAuth 2.0 authorization code grant type, or auth code flow, enables a client application to obtain authorized access to protected resources ...
Read more >
Authentication flow support in MSAL
The OAuth 2 client credentials flow allows you to access web-hosted resources by using the identity of an application. This type of grant...
Read more >
Experience with OAuth 2.0 On-Behalf-Of flow
The idea is to propagate the delegated user identity and permissions through the request chain." The diagram below outlines this scenario and ...
Read more >

github_iconTop Related Medium Post

No results found

github_iconTop Related StackOverflow Question

No results found

github_iconTroubleshoot Live Code

Lightrun enables developers to add logs, metrics and snapshots to live code - no restarts or redeploys required.
Start Free

github_iconTop Related Reddit Thread

No results found

github_iconTop Related Hackernoon Post

No results found

github_iconTop Related Tweet

No results found

github_iconTop Related Dev.to Post

No results found

github_iconTop Related Hashnode Post

No results found
Previous page

This sample won't work if I use certificate as secret for my AAD app

Next page

Could not find any available provisioning profiles for UserDetailsClientiOS on iOS.