Login/Register
AADSTS900144: The request body must contain the following parameter: 'scope' when using legacy Developer Portal
Asked Answered
Solved azureazure-active-directoryazure-api-management
B

1

9

I was trying to implement AAD in my APIM instance based on this article and this article. Unfortunately when it came down to Developer console, right after I picked Authorization code as the Authorization method a popup showed up and showed me the following error:

AADSTS900144: The request body must contain the following parameter: 'scope'.

It failed on https://login.microsoftonline.com/{Directory (tenant) ID }/oauth2/v2.0/authorize?response_type=code&client_id={client id}&redirect_uri=https://{my-apim-instance}/docs/services/{authorization method}/console/oauth2/authorizationcode/callback&state={state}.

Since all of this is part of Azure Portal (at this point the legacy Developer Portal) I do not fill the scope parameter. How can you set that property? Or is the problem somewhere else?

Bushranger answered 20/1, 2020 at 15:25 Comment(0)
D
8

Since you are using V2 endpoints, you need to use the scope you created for the backend-app in the Default scope field.

enter image description here

You can find the scope from your webapi application.

enter image description here

Dumpish answered 21/1, 2020 at 1:9 Comment(1)
That solved the problem :-) It also introduced another one, but I think the new one should be easier to solve :-) Thank you.Bushranger

© 2022 - 2024 — McMap. All rights reserved.