kawa/SharepointToolbox-Web
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Register created app as public client (fix connect AADSTS7000218) #1

Merged
kawa merged 5 commits from fix/auto-elevate-ownership into main 2026-06-02 14:43:33 +02:00
Conversation 0 Commits 5 Files Changed 19
+5 -1
1 changed files with 5 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files
Showing only changes of commit b7061867f1 - Show all commits
Services/Auth/AppRegistrationService.cs
+5 -1
View File
@@ -47,7 +47,11 @@ public class AppRegistrationService : IAppRegistrationService
displayName = $"SP Toolbox — {tenantName}", displayName = $"SP Toolbox — {tenantName}",
signInAudience = "AzureADMyOrg", signInAudience = "AzureADMyOrg",
isFallbackPublicClient = true, isFallbackPublicClient = true,
web = new { redirectUris = new[] { redirectUri } }, // Register the redirect under the PUBLIC client platform so the connect
// flow can redeem the auth code with PKCE only (no client secret). A
// redirect under `web` makes Entra treat the app as confidential and the
// token exchange fails with AADSTS7000218 (secret required).
publicClient = new { redirectUris = new[] { redirectUri } },
requiredResourceAccess = new[] requiredResourceAccess = new[]
{ {
new new