Help - Azure AD OpenID Enterprise connection customized with Web Application in React

thiago.mouro · February 14, 2025, 1:30pm

I’m supporting a coworker where we integrated AUTH0 with the company’s Azure AD, using a custom openID.
It is authenticating correctly, in the user’s attribute profile there is an attribute that comes from their Azure called role, when you go to the Users Menu in RAW JSON in their user the role attribute appears.

1- We need to know how we make the application react for it to appear, in scopes we have already placed roles there, we have also created a post login action forcing this without success.

2- The Access token returned after authenticating with its application seems like the access token is missing a part and cannot be decoded in JWT IO SITE, how do I make the access token appear complete?

3- the last question is that he created an api for his application in AUTH0 and when he tests it locally with this same token from question 2 it is unauthorized, because I understand that the token is not complete and because of this it gives an error.

Can anyone help please?

thiago.mouro · February 14, 2025, 1:32pm

To complement question 1, we need to make a user attribute that comes from Azure AD and is already listed in USERS, in the raw json appear within its react application.

ex: name: eduardo
email: eduardo.teste@empresa.com
role: readonly

thiago.mouro · February 14, 2025, 3:25pm

I can solve almot all questions.

Right now, my problem is about access token, it was incomplete.

I need to see complete access token in response for use em jwt io site.
I created a machine to machine api for my application and not being able to use my app’s access token for it, it is not authorized, I believe the two errors are linked.

nik.baleca · February 15, 2025, 12:08am

Hi @thiago.mouro

Welcome to the Auth0 Community!

Just to be sure that I am on track with your issue, regarding the integration with Azure AD, did you follow the steps provided in our documentation?

What do you mean that your access token is incomplete? Are you missing anything inside it specifically or is it malformed? Could you post the contents of a token in order for me to examine it?

Regarding your Machine to Machine application, did you approve the necessary permissions and do you have the necessary audience when you make the calls?
You can review our documentation and this blog post regarding M2M authorization and registering M2M applications.

If you have any other questions or still require further assistance, please let me know!

Kind Regards,
Nik

Topic		Replies	Views
Azure API Management integration with Azure AD (Enterprise Connection) Help jwt , auth0 , login , access-token	2	3863	December 19, 2019
Can not verify JWT token of Azure AD with openid scope in java Help third-party-client-applications , directory-authorization	2	1346	June 21, 2023
How to get custom attributes when signin with Azure AD B2C Help api	5	5946	July 25, 2019
See the roles of users in the accestoken JWT.io jwt	4	1035	August 25, 2023
Feature Request: Support custom claims from azure-ad connection Product Feedback azure-ad , custom-claims , claims , oidc-connection	1	1753	November 24, 2022

Help - Azure AD OpenID Enterprise connection customized with Web Application in React

Related topics