使用509证书进行身份验证时未生成令牌
尝试启动尝试联系Microsoft Outlook API的控制台应用程序时出现身份验证错误。我用控制台日志创建了这个应用程序,我将在这个问题中显示。似乎我在尝试以静默方式获取令牌时遇到此错误,但从我看到的每个示例来看,似乎我正在正确地执行此操作。 这些是我看到导致错误的两个函数。
令牌获取验证功能:
private static string EMAIL_SERVICE_ACCOUNT = "********@dell.com";
private static string EMAIL_SERVICE_PWD = "*******";
private static string ClientID = "************************";
private static string ClientSecret ="**********************";
private static Uri ReturnUri = new Uri("https://localhost:44300/");
private static string CommonAuthority = "https://login.windows.net/Common";
public static AuthenticationContext AuthContext { get; set; }
private static async Task<AuthenticationResult> AcquireTokenAsync(string authContextUrl, string resourceId)
{
AuthenticationResult ar = null;
try
{
AuthContext = new AuthenticationContext(authContextUrl);
if (AuthContext.TokenCache.ReadItems().Count() > 0)
{
string cachedAuthority =
AuthContext.TokenCache.ReadItems().First().Authority;
AuthContext = new AuthenticationContext(cachedAuthority);
}
//ClientCredential clientCredential = new ClientCredential(ClientID, ClientSecret); << not invoking this
ar = (await AuthContext.AcquireTokenSilentAsync(resourceId, ClientID));
}
catch (Exception e)
{
//not in cache; we'll get it with the full oauth flow
if (e.InnerException != null)
Console.WriteLine("Inner exception: {0}", e.InnerException);
}
if (ar == null)
{
try
{
UserCredential uc = new UserCredential(EMAIL_SERVICE_ACCOUNT, EMAIL_SERVICE_PWD);
ar = AuthContext .AcquireToken(resourceId, ClientID, uc);
}
catch (Exception acquireEx)
{
//utter failure here, we need let the user know we just can't do it
Console.WriteLine("Error trying to acquire authentication result: " + acquireEx.Message);
if (acquireEx.InnerException != null)
Console.WriteLine("Inner exception: {0}", acquireEx.InnerException);
}
}
return ar;
}
这是我创建OutLook客户端的功能
private static async Task<OutlookServicesClient> GetOutlookClient()
{
OutlookServicesClient oc = null;
try
{
string MAIL_RESOURCE_ID = "https://outlook.office365.com";
AuthenticationResult ar = await AcquireTokenAsync(CommonAuthority, MAIL_RESOURCE_ID);
if (ar != null)
{
oc = new OutlookServicesClient(new Uri("https://outlook.office365.com/api/v1.0"), () =>
Task.Run(() =>
{
return ar.AccessToken;
}));
}
}
catch (Exception ex)
{
Console.WriteLine("Error getting Outlook client: " + ex.Message);
if (ex.InnerException != null)
Console.WriteLine("Inner exception: {0}", ex.InnerException);
}
return oc;
}
这是我得到的错误
1 个答案:
答案 0 :(得分:0)
好的我找到了解决我想要做的事情,我决定继续使用x509 cert v2来解决这个问题,我还发现这对我的项目来说会更好用,因为它本来是一个控制台应用程序。下面是我的代码片段,用于有效地获取令牌以对Azure进行身份验证。 509 Cert获取身份验证令牌:
public static string Aquire_Token()
{
AuthenticationResult authenticationResult = null;
try
{
string authority = ConfigurationManager.AppSettings["Authority"];
AuthenticationContext authenticationContext = new AuthenticationContext(authority, false);
string certfile = ConfigurationManager.AppSettings["ClientCertificatePfx"];
X509Certificate2 cert = new X509Certificate2(certfile, ConfigurationManager.AppSettings["ClientCertificatePfxPassword"], X509KeyStorageFlags.MachineKeySet);
ClientAssertionCertificate cac = new ClientAssertionCertificate(CLIENTID, cert);
authenticationResult = authenticationContext.AcquireToken(RESOURCEID, cac);
}
catch (Exception ex)
{
Console.WriteLine("Issue with Aquireing Token :" + ex.Message);
}
return authenticationResult.AccessToken;
}
}
相关问题
最新问题
- 我写了这段代码,但我无法理解我的错误
- 我无法从一个代码实例的列表中删除 None 值,但我可以在另一个实例中。为什么它适用于一个细分市场而不适用于另一个细分市场?
- 是否有可能使 loadstring 不可能等于打印?卢阿
- java中的random.expovariate()
- Appscript 通过会议在 Google 日历中发送电子邮件和创建活动
- 为什么我的 Onclick 箭头功能在 React 中不起作用?
- 在此代码中是否有使用“this”的替代方法?
- 在 SQL Server 和 PostgreSQL 上查询,我如何从第一个表获得第二个表的可视化
- 每千个数字得到
- 更新了城市边界 KML 文件的来源?