Azure API Management
Azure AD OAuth Group / App Roles claims with validate-jwt policy
Hi, Have been trying to use Azure Active Directory as OAuth server with API Management. However, has anyone been able to consume the Group claims from AAD in the validate-jwt policy? To me it seems like API Management only uses access token in the Authorisation header when tried from Developer Portal. Also, validate-jwt only deals with signed access token which doesn't have the groups or app roles claims and they are on the id token issued by AAD. Any pointers on how I can go about doing this would be much appreciated.
Hello, Thank you for posting here! I have found an article, which describes the claims in tokens that Azure AD returns. It includes the JWT version of the claim and a description of the claim and its use. Please refer this article to validate-JWT policy. Hope this helps. Regards, Swikruti If a post answers your question, please click Mark as Answer on that post and Vote as Helpful.
Limitations on URL Template?
Using Office 365 EWS API in Azure
Temporary Glitch or Bug?
API Management in new/old portal - working?
How to Authenticate the Resource manager api calls ?
Expose a REST API POST method as GET - not possible?
Does Azure API Management include WAF functionality?
find-and-replace policy statement's "to" attribute does not accept a zero length string
On Developer Portal Login, Redirect the User to Home
In Resource Manager Templates, Is it possible to iterate inside keys expecting an array of items (nested loops)
Azure Scheduler Rest API: Update Job - How to Remove advanced scheduling options? - Error: Schedules are not supported for recurrence unit 'Hour'
I am getting error when trying to add a user group from Active directory in the Azure API management product
How to create API using Azure API Management REST API in C#
Automatically Subscribe a User to a Product
can I capture invalid request info with apim event hubs?
Manage my REST API using Azure