The user or administrator has not consented to use the application - Send an interactive authorization request for this user and resource
We're doing this CRM Web API project. The project logs-into Dynamics CRM online instance and gets the list of accounts.
The login seems to be happening fine. However, the accounts listing is giving the below error:
AADSTS65001: The user or administrator has not consented to use the application with ID 'xxxx-xxxxx-xxxx-xxx'. Send an interactive authorization request for this user and resource. Trace ID: e3b360d6-39fb-4e61-87d9-26531f30fd7b Correlation ID: 9b2cff0c-074e-44fe-a169-77c8061a7312 Timestamp: 2016-10-18 10:12:49Z
The permissions are properly set:
What is the problem?
An admin must consent to the permissions. You should make an authorization request to Azure AD that includes the parameter prompt=admin_consent.
As in the documentation here, the prompt parameter can have 3 values: login, consent, or admin_consent.
So, you should go to a URL such as https://login.microsoftonline.com/tenant-id/oauth2/authorize?client_id=app-client-id&redirect_uri=encoded-reply-url&response_type=code&prompt=admin_consent.
Replace tenant-id with your Azure AD tenant id/domain name, or common if your app is multi-tenant. Replace app-client-id with your app's client id. Replace encoded-reply-url with a URL-encoded reply URL of your app.
An easier way of constructing the URL you need is to go through authentication and just grab the URL in the address bar when you hit Azure AD. Then just add &prompt=admin_consent to the URL.
EDIT: With the newest update to the Azure Portal came the ability to grant permissions from the portal directly.
If you go to Azure Active Directory in the new portal, find your app registration there and click Grant Permissions under the Required permissions blade.
- Prevent text selection after double click
- Check for browser optional chaining support in Angular project
- Is there a way to create dynamic ranges given an array of values, and counting how many belong to each range
- Can't use type-fest GreaterThan as parameter type
- Is there a way to get the JSX/TSX of a React component from the code itself?
- Check if optional chaining is supported
- What is the best way to remove a table row with jQuery?
- How can I generate a list of random shades of a particular color? (e.g. random shade of orange)
- Proper way to catch exception from JSON.parse
- xcode using wrong node.js version
- How to autosize a textarea using Prototype?
- How does one align a single row to the top in JQGrid?
- javascript number counting
- How to import one function from various files in the same folder in Javascript?
- useTemplateRef is not reactive for arrays?
- Regular expression that ignores HTML entities
- Handling Promise.race better
- Using Angular Signals with HostBinding to update style?
- Remove empty string field from a object contain nested object and array?
- Getting hash parameters from request url
- How to check if a variable is a blob in JavaScript
- Paginate Javascript array
- Adding an onclick event to google.map marker
- Why I can't read data from API (React app)
- How can I get the status code from an HTTP error in Axios?
- How do I refresh a page using JavaScript?
- XForms Refresh not working? (XSLTForms 1.7)
- Uncaught (in promise) Unable to find element in cloned iframe #2460
- Counting cells with a specific class in JavaScript
- Is it possible to return an empty slot from JavaScript's map() function?