You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
- [x] bug report -> please search issues before submitting
- [ ] feature request
- [ ] documentation issue or request
- [ ] regression (a behavior that used to work and stopped in a new release)
The issue was found for the following scenario:
Please add an 'x' for the scenario(s) where you found an issue
Add any other context about the problem here, such as logs.
You can enable Middleware diagnostics by uncommenting the following lines
You can enable personally identifiable information in your exceptions to get more information in the open id connect middleware see Seeing [PII is hidden] in log messages
This issue is for a: (mark with an
x
)The issue was found for the following scenario:
Please add an 'x' for the scenario(s) where you found an issue
Repro-ing the issue
Repro steps
Expected behavior
To have a valid claims principal identity at this point.
Actual behavior
Neither scope or roles claim was found in the bearer token. exception is thrown in WebApiServiceCollectionExtensions.cs
Possible Solution
Allow http://schemas.microsoft.com/ws/2008/06/identity/claims/role as valid scope claim type?
Additional context/ Error codes / Screenshots
I followed this stackoverflow answer to add application permissions to my .default scope. I can verify that the role claim is present in the claim collection, but is has http://schemas.microsoft.com/ws/2008/06/identity/claims/role as claim type. In ClaimConstants.cs role is defined as type.
Any log messages given by the failure
Add any other context about the problem here, such as logs.
OS and Version?
Versions
Attempting to troubleshooting yourself:
Mention any other details that might be useful
The text was updated successfully, but these errors were encountered: