microsoft-identity-web: [Bug] "The issuer '(null)' is invalid" error when I request my API with bearer token

Which Version of MSAL are you using ? msal.net 1.9.0

Platform asp.net core 5.0

What authentication flow has the issue?

  • Desktop / Mobile
    • Interactive
    • Integrated Windows Auth
    • Username Password
    • Device code flow (browserless)
  • Web App
    • Authorization code
    • OBO
  • Daemon App
    • Service to Service calls

Other? - please describe;

Is this a new or existing app? This is a new app or experiment

Repro

I have added following lines of code.

// startup.cs
services.AddMicrosoftIdentityWebApiAuthentication(Configuration, "AzureAd");
app.UseAuthentication();

// WeatherForecastController
[Authorize]
[RequiredScope("Default")]

// appsettings.json
"AzureAd": {
    "Instance": "https://login.chinacloudapi.cn/",
    "ClientId": "my client id",
    "Domain": "my organization domain",
    "TenantId": "my organization tenant id",
    "Authority": "https://login.chinacloudapi.cn/my organization tenant id/"
}

Expected behavior I checked my token on jwt.ms, it shows everything is good. image

Actual behavior I use Postman to request the API, and the API tells me issuer is null in my token. image

About this issue

  • Original URL
  • State: closed
  • Created 3 years ago
  • Reactions: 1
  • Comments: 17 (3 by maintainers)

Most upvoted comments

@bgavrilMS

  1. I tried to set authority as sts.chinacloud.cn but response shows The issuer '(null)' is invalid also. So I prefer to think of it as a problem in msal.net.
  2. Actually I’m not a Microsoft employee. Ha ha.
+1
Gtyrande on Apr 29, 2021
Read more comments on GitHub
← microsoft-identity-web: [Bug] Starting release 1.11.0 authentication against Azure B2C using PKCE is broken.
microsoft-identity-web: [Bug] TokenAcquisitionalways fails with MicrosoftIdentityWebChallengeUserException when called from a DelegatingHandler, but only on an Azure Web App.  →