azure-search-openai-demo: Token Errors when using oid and group id check enabled
Please provide us with the following information:
This issue is for a: (mark with an x)
- [ X] bug report -> please search issues before submitting
- [ ] feature request
- [ ] documentation issue or request
- [ ] regression (a behavior that used to work and stopped in a new release)
Minimal steps to reproduce
Any log messages given by the failure
{ "error": "invalid_client", "error_description": "AADSTS500116: The reply uri specified in the request is not a valid URL. Allowed schemes: '*'.\r\nTrace ID: 30ef56ba-316c-46fe-bb75-8767e39a4a00\r\nCorrelation ID: d53vsvr51-30f8-4cf6-bf1e-83e55a6s4db5c5\r\nTimestamp: 2023-10-12 04:28:06Z", "error_codes": [ 500116 ], "timestamp": "2023-10-12 04:28:06Z", "trace_id": "30ef56ba-316c-46fe-bb75-8767e39a4a00", "correlation_id": "d53vsvr51-30f8-4cf6-bf1e-83e55a6s4db5c5" }
Expected/desired behavior
OS and Version?
Windows 7, 8 or 10. Linux (which distribution). macOS (Yosemite? El Capitan? Sierra?)
azd version?
run
azd versionand copy paste here.
Versions
Mention any other details that might be useful
Thanks! We’ll be in touch soon.
About this issue
- Original URL
- State: closed
- Created 9 months ago
- Comments: 16
Thanks - please track the improvements issue for updates. Appreciate your patience and troubleshooting here. Thanks for all your feedback.
I can reproduce the issue. Will work on a fix
HI @mattjames1978 thanks for the feedback. I agree that combining the built-in authorization and the login on the page is ideal. We can consider adding the ability to link these two methods as a future enhancement. I will file an issue about this.
Agreed that enforcing oid and group security filters via an environment variable would be a useful enhancement. I will file an issue about this as well.
#782