Assigned Azure AD Roles missing in User Claims in Blazor Client App

Techno
December 14, 2022
165 views
0 votes
2 Answers

I have created a role for within an Azure App registration and assigned to me.

This is the role

This is the assignment in the enterprise application

Now in the Blazor Client App,when i try to read the User roles assigned it is empty

var authstate = await AuthenticationStateProvider.GetAuthenticationStateAsync();
        var user = authstate.User;
        userName = user.Identity.Name;
        var x = user.Claims.Where(t => t.Type == System.Security.Claims.ClaimTypes.Role).ToList();

The dependencyInjection is Program.cs looks like this

builder.Services.AddMsalAuthentication(options =>
{
    builder.Configuration.Bind("AzureAd", options.ProviderOptions.Authentication);
    options.ProviderOptions.DefaultAccessTokenScopes.Add("User.Read");


});

Update:

Answers

- TinyWang
- December 14, 2022 at 11:11 am
- 0 votes
0
Program.cs
```
builder.Services.AddMicrosoftIdentityWebAppAuthentication(builder.Configuration)
        .EnableTokenAcquisitionToCallDownstreamApi(new string[] { "user.read" })
        .AddInMemoryTokenCaches();
// Add services to the container.
//builder.Services.AddControllersWithViews();
builder.Services.AddControllersWithViews(options =>
{
    var policy = new AuthorizationPolicyBuilder()
        .RequireAuthenticatedUser()
        .Build();
    options.Filters.Add(new AuthorizeFilter(policy));
})
// Add the Microsoft Identity UI pages for signin/out
.AddMicrosoftIdentityUI();
```
=====================================================

I can get the roles, as you can see, I have a role, and I assigned it to a user
Login or Signup to reply.

- Nb777
- December 23, 2022 at 8:31 am
- 0 votes
0
To access the Azure AD API, you have to grant your app with right permissions. On your API Application go to API Permissions page, select Grant admin consent.

Login or Signup to reply.

Please signup or login to give your own answer.

Click here to cancel reply.