我有一个使用Azure AD保护的简单API应用程序,隐式流程为真。
现在使用ADAL库的Angular 5应用程序,隐式流程为真,我得到了令牌。
但是当我用来调用API时,同样的道理,它不是授权。
import { Component, OnInit } from '@angular/core';
import { Adal5Service } from 'adal-angular5';
import { adal } from 'adal-angular';
const config: adal.Config = {
tenant: 'XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX',
clientId: 'XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX'
}
@Component({
selector: 'app-root',
templateUrl: './app.component.html',
styleUrls: ['./app.component.css']
})
export class AppComponent implements OnInit{
title = 'app';
constructor(private service: Adal5Service) {
this.service.init(config);
}
ngOnInit(){
// Handle callback if this is a redirect from Azure
this.service.handleWindowCallback();
// Check if the user is authenticated. If not, call the login() method
if (!this.service.userInfo.authenticated) {
this.service.login();
}
// Log the user information to the console
console.log('username ' + this.service.userInfo.username);
console.log('authenticated: ' + this.service.userInfo.authenticated);
console.log('name: ' + this.service.userInfo.profile.name);
console.log('token: ' + this.service.userInfo.token);
console.log(this.service.userInfo.profile);
}
// Logout Method
public logout() {
this.service.logOut();
}
}
Web API和Angular 5应用程序都注册了Azure AD并获得了必要的权限。
任何建议,为什么令牌不会验证?