In working through the "configuration" portions of the WA Active Directory I'm uploading a manifest file (Json) and even when the upload seems to go without a hitch (no errors). However the manifest file seems to have little or in some cases no effect on the "configuration" portion of the portal.
More specifically I'm desperately trying to configure an endpoint in Azure to provide a token to a mobile client app so that the app will have access to a service on one of my development machine that will trust the claim issued by the Azure end point. For some reason, this seemingly simple task is complicated by inconsistent nomenclature used by or in the examples provided (including sample code located here). I have provided the upload Json manifest file and theresulting Json manifest file (download after upload).
Upload Json manifest file contents:
{"allowActAsForAllClients": null,"appId": "fa246c05-d4b4-4001-91b0-76259af5d589","appMetadata": {"version": 0,"data": [ ]
},"appRoles": [ ],"availableToOtherTenants": true,"displayName": "helloapp","errorUrl": null,"groupMembershipClaims": null,"homepage": null,"identifierUris": [ ],"keyCredentials": [ ],"knownClientApplications": [ ],"logoutUrl": null,"oauth2AllowImplicitFlow": false,"oauth2AllowUrlPathMatching": false,"oauth2Permissions": [ ],"oauth2RequirePostResponse": false,"passwordCredentials": [ ],"publicClient": true,"replyUrls": ["https://azurerocks.com/helloapp"
],"requiredResourceAccess": [
{"resourceAppId": "00000002-0000-0000-c000-000000000000","resourceAccess": [
{"id": "5778995a-e1bf-45b8-affa-663a9f3f4d04","type": "Scope"
},
{"id": "78c8a3c8-a07e-4b9e-af1b-b5ccab50a175","type": "Scope"
},
{"id": "311a71cc-e848-46a1-bdf8-97ff7156d8e6","type": "Scope"
},
{"id": "a42657d6-7f20-40e3-b6f0-cee03008a62a","type": "Scope"
}
]
}
],"samlMetadataUrl": null,"defaultPolicy": [ ],"extensionProperties": [ ],"objectType": "Application","objectId": "4940fc96-d604-4805-9433-12a663552b02","deletionTimestamp": null,"createdOnBehalfOf": null,"createdObjects": [ ],"manager": null,"directReports": [ ],"members": [ ],"memberOf": [ ],"owners": [ ],"ownedObjects": [ ],"appPermissions": [
{"claimValue": "user_impersonation","description": "Allow the application full access to the Data Syncing service on behalf of the signed-in user","directAccessGrantTypes": [ ],"displayName": "Set policy for Data Syncing API","impersonationAccessGrantTypes": [
{"impersonated": "User","impersonator": "Application"
}
],"isDisabled": false,"origin": "Application","permissionId": "6f6263c6-3eca-4bf9-88a1-48132a482064","resourceScopeType": "Global","userConsentDescription": "Set policy for Data Syncing API","userConsentDisplayName": "Set policy for Data Syncing API"
}
],"appPermissions": [
{"claimValue": "user_impersonation","description": "Allow the application full access to the Help File Download service on behalf of the signed-in user","directAccessGrantTypes": [ ],"displayName": "Have full access to the Help File Download service","impersonationAccessGrantTypes": [
{"impersonated": "User","impersonator": "Application"
}
],"isDisabled": false,"origin": "Application","permissionId": "5c879d4d-fa1a-4d6a-95e0-0bda4b646d54","resourceScopeType": "Personal","userConsentDescription": "Allow the application full access to the Help File Download service on your behalf","userConsentDisplayName": "Have full access to the Help File Download service"
}
],
"oauth2Permissions": [
{"adminConsentDescription": "Allow the application full access to the Hello App/Data Sync service on behalf of the signed-in user","adminConsentDisplayName": "Have full access to the Hello App/Data Sync service","id": "481d457b-1ee6-4e76-8e60-27248361917c","isEnabled": true,"origin": "Application","type": "User","userConsentDescription": "Allow the application full access to the Hello App/Data Sync service on your behalf","userConsentDisplayName": "Have full access to the Hello App/Data Sync service","value": "user_impersonation"
}
]
}Downloaded Json manifest file (from he Azure Portal configuration page):
{"allowActAsForAllClients": null,"appId": "fa246c05-d4b4-4001-91b0-76259af5d589","appMetadata": {"version": 0,"data": []
},"appRoles": [],"availableToOtherTenants": true,"displayName": "helloapp","errorUrl": null,"groupMembershipClaims": null,"homepage": null,"identifierUris": [],"keyCredentials": [],"knownClientApplications": [],"logoutUrl": null,"oauth2AllowImplicitFlow": false,"oauth2AllowUrlPathMatching": false,"oauth2Permissions": [
{"adminConsentDescription": "Allow the application full access to the Hello App/Data Sync service on behalf of the signed-in user","adminConsentDisplayName": "Have full access to the Hello App/Data Sync service","id": "481d457b-1ee6-4e76-8e60-27248361917c","isEnabled": true,"origin": "Application","type": "User","userConsentDescription": "Allow the application full access to the Hello App/Data Sync service on your behalf","userConsentDisplayName": "Have full access to the Hello App/Data Sync service","value": "user_impersonation"
}
],"oauth2RequirePostResponse": false,"passwordCredentials": [],"publicClient": true,"replyUrls": ["https://azurerocks.com/helloapp"
],"requiredResourceAccess": [
{"resourceAppId": "00000002-0000-0000-c000-000000000000","resourceAccess": [
{"id": "5778995a-e1bf-45b8-affa-663a9f3f4d04","type": "Scope"
},
{"id": "78c8a3c8-a07e-4b9e-af1b-b5ccab50a175","type": "Scope"
},
{"id": "311a71cc-e848-46a1-bdf8-97ff7156d8e6","type": "Scope"
},
{"id": "a42657d6-7f20-40e3-b6f0-cee03008a62a","type": "Scope"
}
]
}
],"samlMetadataUrl": null,"defaultPolicy": [],"extensionProperties": [],"objectType": "Application","objectId": "4940fc96-d604-4805-9433-12a663552b02","deletionTimestamp": null,"createdOnBehalfOf": null,"createdObjects": [],"manager": null,"directReports": [],"members": [],"memberOf": [],"owners": [],"ownedObjects": []
}1- What do I need to do to ultimately get the token needed by my development "web service" development end point from Azure Active Directory Service?
2- Why doesn't this manifest file have the effect of having the applications show up in the combo box at the bottom of the "configuration page"?
In the "
Permissions to other applications
section....
Any help at this point would be greatly appreciated.
Edward Walker