I enabled oAuth in Azure API management. Then using ClientId, Client Secret, Scope, Access Token URL & Grant Type, I was able to get the access token. How can I get the refresh token from the API ?
Azure APIM oAuth workflow - refresh token is missing
522 views Asked by OpenStack At
1
There are 1 answers
Related Questions in AZURE
- How to update to the latest external Git in Azure Web App?
- I need an azure product that executes my intensive ffmpeg command then dies, and i only get charged for the delta. Any Tips?
- Inject AsyncCollector into a service
- mutual tls authentication between app service and function app
- Azure Application Insights Not Displaying Custom Logs for Azure Functions with .NET 8
- Application settings for production deployment slot in Azure App Services
- Encountered an error (ServiceUnavailable) from host runtime on Azure Function App
- Implementing Incremental consent when using both application and delegated permissions
- Invalid format for email address in WordPress on Azure app service
- Producer Batching Service Bus Vs Kafka
- Integrating Angular External IP with ClusterIP of .NET microservices on AKS
- Difficulty creating a data pipeline with Fabric Datafactory using REST
- Azure Batch for Excel VBA
- How to authenticate only Local and Guest users in Azure AD B2C and add custom claims in token?
- Azure Scale Sets and Parallel Jobs
Related Questions in OAUTH-2.0
- discord.py - Oauth2 - join user to guild
- Implementing Incremental consent when using both application and delegated permissions
- Verifying Google Identity OAuth2 token with Ruby
- spring security error Caused by: org.attoparser.ParseException: Exception evaluating SpringEL expression: s
- Encountering HttpError 403 and 500 When Using Google Sheets API with Service Account
- get refresh token in axios interceptor
- spring error exception with oauth2 and securityconfig
- What oauth 2.0 endpoint is used to validate a bearer token
- Not enough permissions to access API request https://api.linkedin.com/v2/me
- How to specify the client ID and redirect URI in Swagger OAuth2.0 configuration for Swagger UI?
- OAuth2 PHP change invalid_token response
- Call Databricks API from an ASP.NET Core web application
- Secure to share Access Token over public API using CORs?
- How to use Oauth in order to log‑in on .googleapis.com on almost any arbitrary endpoints domains from the web browser?
- OAuth access token attribute based reverse proxying of http ressources
Related Questions in AZURE-API-MANAGEMENT
- How to set up the link for the paginated files in the Get Rows(V2) Logic App connector and pass it via Azure API call?
- What's the difference between Microsoft.ApiManagement/service/portalsettings and Microsoft.ApiManagement/service/portalconfigs
- How to read agent application data to azure sql using apim and logic apps
- Enabling minimum apiVersion to 2021-08-01 in Azure API Management causing saving issues or deployment errors for existing logic apps
- How to LIMIT cost to 100 API calls max in a day even if someone has my API endpoint details
- Connect Azure front door with APIM and Azure Web App
- Azure APIM Policy, managed identity resource value from namevalue
- Azure OpenAI and load balancer configuration using APIM
- Prefer not to manually pass the Authorization header after logging in to the Azure APIM developer portal
- Azure APIM: check if parameter already exsit in dictionary
- Issue accessing Azure APIs in Visual Studio Code
- Create multiple subscription keys for one API in Azure
- Problem when trying to update the Azure API Gateway operation backend via Terraform
- Azure APIM Import OpenAPI Spec Failing in GitHub Build Actions
- How to read the API error message from Azure APIM using the qusto query hit from c# code in Rest API
Related Questions in AZURE-OAUTH
- Is it possible to for users to only grant a subset of permissions on OAuth Authorization Code Flow?
- OAuth Access Token Exchange Protocol
- Decoding azure access token obtained by client credential flow
- Springboot reactive webflux with oauth2 client credentials flow for azure active directory
- Can I set two different Redirect URL (Reply URL) inside a SPA application inside Azure AD
- Getting Azure AD Enterprise Application user group in jwt token using MSAL in C#
- How to generate Access Token for Azure with grant type password? PowerBI REST API
- How should I create app registrations on-demand for my users in Azure B2C?
- MS Graph API Granted Scopes not reflecting in the Access Token
- Power Bi Azure Cost Management - oauth token
- How to make all refresh tokens invalid for getting access token to make it more secure
- Microsoft/Azure OAuth failing, my organization lacks a service principal
- OAuth authentication with EWS Managed API applications for a specific mailbox
- Use HWIOAUTHBundle with LexikJWT in a api-platform project
- Admin-approved User.Read.All scope is not granted in the OAuth token scopes
Popular Questions
- How do I undo the most recent local commits in Git?
- How can I remove a specific item from an array in JavaScript?
- How do I delete a Git branch locally and remotely?
- Find all files containing a specific text (string) on Linux?
- How do I revert a Git repository to a previous commit?
- How do I create an HTML button that acts like a link?
- How do I check out a remote Git branch?
- How do I force "git pull" to overwrite local files?
- How do I list all files of a directory?
- How to check whether a string contains a substring in JavaScript?
- How do I redirect to another webpage?
- How can I iterate over rows in a Pandas DataFrame?
- How do I convert a String to an int in Java?
- Does Python have a string 'contains' substring method?
- How do I check if a string contains a specific word?
Trending Questions
- UIImageView Frame Doesn't Reflect Constraints
- Is it possible to use adb commands to click on a view by finding its ID?
- How to create a new web character symbol recognizable by html/javascript?
- Why isn't my CSS3 animation smooth in Google Chrome (but very smooth on other browsers)?
- Heap Gives Page Fault
- Connect ffmpeg to Visual Studio 2008
- Both Object- and ValueAnimator jumps when Duration is set above API LvL 24
- How to avoid default initialization of objects in std::vector?
- second argument of the command line arguments in a format other than char** argv or char* argv[]
- How to improve efficiency of algorithm which generates next lexicographic permutation?
- Navigating to the another actvity app getting crash in android
- How to read the particular message format in android and store in sqlite database?
- Resetting inventory status after order is cancelled
- Efficiently compute powers of X in SSE/AVX
- Insert into an external database using ajax and php : POST 500 (Internal Server Error)
To get refresh token from the API, you need to add
offline_accesspermission in the scope.Please note that, Client credentials flow works with permissions of Application type only. So, you won't get refresh token using this flow as
offline_accesspermission is of Delegated type.Instead, you can make use of Authorization Code flow as Grant Type.
I tried to reproduce the same in my environment via Postman and got below results:
In my Azure AD application, I added API permissions like below:
To get refresh token, change the grant type to Authorization Code and include
offline_accessin the scope like below:When you selected
Get New Access Token, one new window will open where you have to login with your credentials as below:After successful authentication, you will get both access token and refresh token like below:
You don't have to make two separate calls like one to get
access tokenand another one to getrefresh token.Instead, you can directly add
offline_accessin the scope along with custom Api scope.