DEVHIDE
Login Or Sign up

Doesn't Azure AD have a metadata document that lists the `issuer` for v1 access tokens?

52 Views Asked by At

The OpenID Connect metadata document for an Azure tenant is:

https://login.microsoftonline.com/<tenant-id>/v2.0/.well-known/openid-configuration

It lists the issuer to be https://login.microsoftonline.com/<tenant-id>/v2.0".

However, that's only the case when using v2 access tokens. For v1 access tokens the issuer is actually https://sts.windows.net/<tenant-id>/, which causes applications, that fully depend on the metadata document, to fail.

Doesn't Azure AD have a metadata document that lists the issuer for v1 access tokens?

Note: I know it's generally possible to specify "accessTokenAcceptedVersion": 2, in the manifest to use v2 access token with expected issuer, but that's not an option here

security azure-active-directory jwt openid-connect entra
Original Q&A
0

There are 0 best solutions below

Related Questions in SECURITY

Related Questions in AZURE-ACTIVE-DIRECTORY

Related Questions in JWT

Related Questions in OPENID-CONNECT

Related Questions in ENTRA

Trending Questions

Popular # Hahtags

javascript python java c# php android html jquery c++ css ios sql mysql r reactjs node.js arrays c asp.net json python-3.x ruby-on-rails .net sql-server swift django angular objective-c pandas excel

Popular Questions

Copyright © 2021 Jogjafile Inc.