Thomas Norling
Thomas Norling
What happens if you provide `forceRefresh: true` on the `acquireTokenSilent` request object?
I suspect this is happening when the access token has a longer validity than the id token, if that's the case we'll need to re-evaluate how we do cache lookups...
@its-miller-time In your scenario (and in most scenarios) you should be using an access token. There are very few scenarios where we would recommend using an idToken for anything other...
@its-miller-time > We were wanting to simply pass the headers along and validate the token in our API but it doesn't sound like that's possible? From what I gather the...
Unfortunately I have no updates and no ETA as this will need to be prioritized against our other efforts. Our recommendation is still to use access tokens whenever possible and...
@markusberg Yes, the `role` and `group` claims are also [available on access tokens](https://docs.microsoft.com/en-us/azure/active-directory/develop/access-tokens#payload-claims). You just need to make sure the audience of the access token you request is that of...
Your logs show that the post logout redirection did not occur because there was no session found to log out of. This can happen if the tenant the user is...
Is there any more detail on the invalid_request?
The fiddler trace you shared before just had the logout request and errored out due to there not being an existing session. If you can send me a fiddler trace...
I responded over email with a few additional questions, please take a moment to answer those questions when you can. Thanks!