OAuth2TokenVerify introspect AZURE Tenant grant_type #71

pelord · 2025-02-05T21:09:22Z

Hi

Here my config.

        <If "%{QUERY_STRING} =~ /PATH/">
                AuthType oauth2
                LogLevel debug oauth2:trace5  
                OAuth2TokenVerify introspect https://login.microsoftonline.com/{TENANT}/oauth2/v2.0/token introspect.ssl_verify=false&introspect.auth=client_secret_basic&client_id={CLIENT_ID}&client_secret={CLIENT_SECRET}
                Require valid-user
        </If>

The log provide me this error!

{
  "error": "invalid_request",
  "error_description": "AADSTS900144: The request body must contain the following parameter: 'grant_type'. Trace ID: {trace_id} Correlation ID: {correlation_id} Timestamp: 2025-02-05 20:23:00Z",
  "error_codes": [900144],
  "timestamp": "2025-02-05 20:23:00Z",
  "trace_id": "{trace_id}",
  "correlation_id": "{correlation_id}",
  "error_uri": "https://login.microsoftonline.com/error?code=900144"
}

Any clues?

The text was updated successfully, but these errors were encountered:

zandbelt · 2025-02-05T21:17:45Z

see https://stackoverflow.com/questions/43378748/does-azure-active-directory-have-an-oauth-openid-connect-token-introspection-end

pelord changed the title ~~OAuth2TokenVerify introspect AZURE Tenant~~ OAuth2TokenVerify introspect AZURE Tenant grant_type Feb 5, 2025

zandbelt closed this as completed Feb 5, 2025

This was referenced Feb 6, 2025

mod_oauth2 authentication Azure #4

Closed

Azure token validation #72

Closed

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

OAuth2TokenVerify introspect AZURE Tenant grant_type #71

OAuth2TokenVerify introspect AZURE Tenant grant_type #71

pelord commented Feb 5, 2025

zandbelt commented Feb 5, 2025

OAuth2TokenVerify introspect AZURE Tenant grant_type #71

OAuth2TokenVerify introspect AZURE Tenant grant_type #71

Comments

pelord commented Feb 5, 2025

zandbelt commented Feb 5, 2025