-
Notifications
You must be signed in to change notification settings - Fork 260
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Problem requesting access token for certain clients #73
Comments
Interesting. Adding custom user agent support is on my short term to-do list. I did make some changes recently to support the scope parameter with the auth, which apparently triggers this new behaviour, will have to look at a fix for that. |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
When using the following command with a valid refresh token:
roadrecon auth --refresh-token "XXXX" -s "https://graph.windows.net/.default openid profile offline_access" -c c44b4083-3bb0-49c1-b47d-974e53cbdf3c
The server response with:
"AADSTS9002327: Tokens issued for the 'Single-Page Application' client-type may only be redeemed via cross-origin requests."
I debuged the issue and found out the problem is the user agent. After setting it to a browser like value, the call works as expected.
Maybe it is possible to add a parameter for the user agent.
The text was updated successfully, but these errors were encountered: