Web Api Authentication with Auth0

RohitSingh · October 29, 2021, 12:01am

Hi

I have created a .net core web api and trying to secure it with Auth0.

My webapi has a domain name that redirects to an IP address on windows server hosted on Amazon.

I configured the API on Auth0 with the domain name that I have . the web api is secure now. the web api also has permission set up as well . Now I am trying to get the authorization token , I get the authorization token using code sample by Auth0.

When I pass the Autorization token in header as "Bearer Authorization " token , I get error Unauthorized Audience is not valid as below

www-authenticate: Bearer error="invalid_token"error_description=“The audience 'api domain ’ is invalid”

I dont know how to pass permission i.e “read:message” to the api call.

thanks
Rohit

rueben.tiow · October 29, 2021, 7:54pm

HI @RohitSingh,

Welcome to the Auth0 Community!

I understand that you’ve been encountering errors when requesting access to your API.

First, to pass the corresponding read:message permission to the API, you’ll need to pass read:message in the scope parameter.

Then, make sure that this permission is defined in the audience used in that authorization flow.

Please let me know if you have any further questions. I’d be happy to help.

Thank you.

system · December 6, 2021, 11:40pm

This topic was automatically closed 15 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Authenticating a WEBAPI using auth0 Help	12	5718	April 3, 2018
Access Token Passed from Web App to .NET API Not Working Help auth0	5	2027	May 14, 2022
Auth0 .net core authorize filter returns invalid token error Help management-api , users	2	1143	June 10, 2023
401, Bearer error="invalid_token", The audience is invalid Help jwt	4	28335	July 28, 2021
Cannot figure out how to validate token in .NET Core Web API Help token-validation	6	8005	March 2, 2018

Web Api Authentication with Auth0

Related Topics