Modern App Logon

(0) Share

Report

Posted on by Community Member

Has anyone gotten the Method DiscoverAuthority from the following sample to work with ADFS?

I keep getting this error: Invalid authenticate header format

I presume is because the response.headers["WWW-Authenticate"] contains ",Negotiate,NTLM" and thus the cast Microsoft.IdentityModel.Clients.ActiveDirectory.AuthenticationParameters. CreateFromResponseAuthenticateHeader((response.Headers)["WWW-Authenticate"]); returns null

I got it to work by hardocding the oauth URL to https://[adfsurl]/adfs/ls instead of https://<serverFQDNaddress>/adfs/ls/XRMServices/2011/Organization.svc/web as the sample explains.

any insights would be great.

Thanks

*This post is locked for comments

I have the same question (0)

All responses (6)

Answers (1)

Community Member on at

Like (0)

Report

Forgot the link to the sample

msdn.microsoft.com/.../dn481599.aspx

Was this reply helpful? Yes No
Jim Daly on at

Like (0)

Report

"..the following sample.." Which one are you referring to? This one msdn.microsoft.com/.../dn481599.aspx ?

Was this reply helpful? Yes No
Verified answer

Community Member on at

Like (0)

Report

Fernando;

The sample is quite old and needs to be updated. For example, it uses the preview ADAL NuGet package instead of the latest. There have been some ADAL API changes in the latest packages so the sample update is not simply to install the latest package. I have added the update as an action item for me.

The OAuth URL is wrong in the SDK topic and will be fixed in the next release.

Try this one liner instead of calling the DiscoverAuthority method:

AuthenticationParameters parameters = await AuthenticationParameters.CreateFromResourceUrlAsync(serviceUrl);

string _oauthUrl = parameters.Authority;

Let me know if this works for you.

Peter Hecke | Microsoft CRM SDK team

Was this reply helpful? Yes No
Community Member on at

Like (0)

Report

Peter,

I changed my code to use the sample you provided below and it worked for a while running my code from the VS debugger and now if only works when I run the app deployed on tablets if I run it from VS I get the following error

Unauthorized Http Status Code (401) was expected in the response

I tried uninstalling and reinstalling ADFS. Repairing CRM and I still get that error any ideas?

Was this reply helpful? Yes No
Community Member on at

Like (0)

Report

If anyone has this issue make sure that the capabilities of the app are internetclient and that the enable loopback is set on the debugger.

Was this reply helpful? Yes No
Community Member on at

Like (0)

Report

Unfortunately, I have not seen this happen. When you try to call a web method, if the correct access token in the Authorization header is not supplied, you will get a 401 response, which is expected. From that response you parse the Authority URL. This is the normal flow. Make sure you are adding the SdkClientVersion parameter to your request URL. See msdn.microsoft.com/.../dn531009.aspx.

Was this reply helpful? Yes No

Community site session details

Modern App Logon

Helpful resources

Quick Links

Responsible AI policies

Neeraj Kumar – Community Spotlight

Congratulations to the November Top 10 Community Leaders!

Leaderboard > 🔒一 Microsoft Dynamics CRM (Archived)

Featured topics

Product updates

Community site session details

Modern App Logon

Helpful resources

Quick Links

Responsible AI policies

Neeraj Kumar – Community Spotlight

Congratulations to the November Top 10 Community Leaders!

Subscribe to this forum!

Select categories

Leaderboard > 🔒一 Microsoft Dynamics CRM (Archived)

Featured topics

Product updates