Optional/Custom claim for OAuth app in Azure AD
Can I add the user.officelocation claim for OAuth registered app in Azure AD? If I add it in its service principal in Enterprise Apps ? Will it work ? Do I get office location of users (synced users) in Access token? Or i need to configure something else (office location field is blank in user properties)in user' profile? My app has user.read.all scope granted.
Yes, you can use Azure AD access token to get office location of users.
In the Azure AD application and updated the manifest:
In the Enterprise application added claim like below:
Granted API permissions:
I generated the access token and the office location claim displayed successfully:
https://login.microsoftonline.com/TenantID/oauth2/v2.0/authorize?client_id=ClientID&response_type=token&redirect_uri=https://jwt.ms&scope=api://xxx/claims.read&state=12345&nonce=12345
Note that: If the user doesn't have the office location updated then the claim will not be returned in the access token.
Make sure that the office location attribute is sync'd or update it in user properties:
Go to Azure Portal -> Users -> Edit properties
- OAuth not working inside an iframe
- BFF pattern for native apps in OAuth 2.0?
- Why is PKCE `code_verifier` calculated server-side in BFF pattern?
- Python Script Token Refresh Mechanism Problem for Spotify API
- Laravel Passport Password Grant - Client authentication failed
- Github, restricting third-party access to organizations
- UiPath CLI - github deployment to uipath cloud
- Why Does OAuth v2 Have Both Access and Refresh Tokens?
- Facebook login message: "URL Blocked: This redirect failed because the redirect URI is not whitelisted in the app’s Client OAuth Settings."
- Is is safe to store access token in session storage of client browser?
- Why Google native oauth2 flow require client secret?
- How to use the Requests OAuthlib with grant-type 'Client Credentials'?
- How to get a Google OAuth 2 token for API testing
- GitHub Clone with OAuth Access Token
- Where to store the refresh token on the Client?
- Data intent is null in Android using universal links/applinks using react-native-app-auth
- Cognito: User Pool Client OAuth Scope Limitation
- Yahoo! Fantasy API Maximum Count?
- GitLab OAuth access token validity
- Twitter request token invalid on iOS
- Implementing OAuth 1.0 in an iOS
- How to create oAuth in Instagram?
- Swift (Xcode) REST API Connection using OAuth 1
- MapMyFitness API OAuth questions
- “That Microsoft account doesn’t exist” for Microsoft logins on Auth0
- OAuth SignIn Cordova Firebase
- Get user info via Google API
- Unable to fetch userinfo using access_token from auth0
- Implement OAuth 2.0 authorization against a 3rd party service for a mobile app
- Issue with OAuth authentication for the new Basecamp Api using OAConsumer