Access token not working

rajaauthowner · April 16, 2019, 3:23am

I created an SPA application and Asp.Net MVC application. Downloaded both samples. Both applications are under the same Auth0 account I have. SPA implicit grant flow works. Asp.Net MVC sample works. Logs in and Logs out. I used the same user account under my Auth0 account which is where both applications are. The samples I downloaded from Auth0 are literally unmodified. Logging in to Asp.Net MVC application and accessing protected method (Test/ConfirmAccess) works. But if I took the access token I got in SPA application and make CURL call the MVC application’s API endpoint (after adding a WebAPI endpoint) I get “unauthorized” error.

Dont you have any SPA + Asp.Net MVC sample? I am sure there are lot of applications that have this arrangement. (We have Asp.Net MVC application as well as SPA applications that use the APIs in our Asp.Net MVC application. I am surprised you dont have straight forward samples for this.

C:>curl --request GET --url “https://authtester.azurewebsites.net/api/Login/ConfirmAccess” --header “authorization: Bearer X5XP2FDEK3pd1ad5w-jw4CAUkxoadGAz”
{“Message”:“Authorization has been denied for this request.”}
C:>

rajaauthowner · April 16, 2019, 3:53am

I tried SPA + API too… Authorization failed. I am not sure if I am extracting the bearer token right (from SPA). I pulled the bearer token from the callback (this is what I pulled wkme7MdsdR7nmp7PiTcO2FgaCVdBD3hV)

https://authtester.azurewebsites.net/Home#access_token=wkme7MdsdR7nmp7PiTcO2FgaCVdBD3hV&scope=openid&expires_in=7200&token_type=Bearer&state=QQdQLdBPlA.hYEc7Amb6MN3nXRpX_tpO&id_token=eyJ0eXAiOiJKV1QiLCJhbGcidiJSUzI1NiIsImtpZCI6Ik9EVXlORVl6UWpoRE5UVXhNMFpFT1VReE5qUTFSVEZHT1VZeU5ESkRNa05GTdRRMVJrTkZOUSJ9.eyJpc3MiOiJodHRwczovL3JhamFueHQuYXV0aDAuY29tLyIsInN1YiI6ImF1dGgwfDVjYjE0NmUwNTc5ZjA3MGVjMWU3NWE5NyIsImF1ZCI6IjZIV3hhWWFUczhkTnBBMUs5TURPVXhdQzRLNFNYRWNkIiwiaWF0IjoxNTU1Mzg2MzI3LCJleHAiOjE1NTU0MjIzMjcsImF0X2hhc2giOiJaM0gzSzdfRzY1eW5IdGs4ZlpYY3NBIiwibm9uY2UiOiJwfmxGZ0l6UnlfdFIyaS1QN0ZyTG5vVmpUUHpmTlZHaCJ9.OdnMroJF2SDN4hC2zexMJod9U63-Ms0gQxtn5XBiYljukuatxjrx5UkMC8aEVJS_tJ-q5mvNvaEPPKpOBsOReuhz_HJjJsO7HytDlDgqLHBPP5y9XIVo_HCobTVuo7fkcgA8-CQ5OKdpWk6mHTE8wr0FpFM-GKTrCJ_qNdbstCl6eLXuN0MXIGMppgTn8UOn6ydaKm52vqFnkuWbmiYOjr4Msonrlj7ZVL70Mw7LfyHikG3r8B3BRmvkOxfSwLzKpBZA83vsgYYr3UENZhShyj4QVVuwt91G3YjBf2yb08-TvR5-KIHdgxZC7wIdPEP0_Krb9kyK3v0XJeC5akORtg

konrad.sopala · September 2, 2019, 11:59am

Hey there!

Sorry for such huge delay in response! We’re doing our best in providing you with best developer support experience out there, but sometimes our bandwidth is not enough comparing to the number of incoming questions.

Wanted to reach out to know if you still require further assistance?

Topic		Replies	Views
ASP.Net Web API Tutorial Help spa , aspnet , webapi	2	5999	March 2, 2018
API authentication not possible from SPA Help apis , application	4	933	September 11, 2023
I'm Receiving An 'Unauthorized' Response When Trying to Access my WebAPI using the IdentityToken as my Bearer token Help net	5	10434	September 3, 2019
Can't get Azure AD working with SPA application Help azure-ad , application-failure , not-working	4	5088	March 2, 2018
Confused by API Test tab C# Code Help access-token , aspnet-core , 401	10	4968	August 14, 2019

Access token not working

Related Topics