Azure-docs: "Retrieve tokens in app code" - tokens not found in request headers
I have successfully enabled Google authentication for my nodejs test app, but I don't see the provider-specific tokens listed above in the request headers received by my server code. None of the X-MS-TOKEN-GOOGLE properties appear in the request header.
I do see "x-ms-client-principal-name", which is set correctly based on my Google login, so the authentication is working. I also see that "x-ms-client-principal-idp" is "google" and "x-ms-client-principal" is a long base64 string - is this the google ID token?
Please clarify how I can retrieve profile information for the authenticated Google user. Thanks!
Document details
⚠Do not edit this section. It is required for docs.microsoft.com ➟ GitHub issue linking.
- ID: d4518495-4e07-ce2e-4045-5a50b7922b55
- Version Independent ID: 034d1ba0-a737-21ab-3717-ed8798ac5fe1
- Content: Advanced usage of authentication and authorization - Azure App Service
- Content Source: articles/app-service/app-service-authentication-how-to.md
- Service: app-service
- GitHub Login: @cephalin
- Microsoft Alias: cephalin
BBI-YggyKing
All 7 comments
@bbi-yggy Thanks for your feedback! We will investigate and update as appropriate.
SaurabhSharma-MSFT
on 12 Dec 2018
@bbi-yggy Yes, the x-ms-client-principal deals with the user profile that is authenticated.
We have assigned the issue to the doc author to see if they would consider adding steps around using this value and to verify if the X-MS-Token-GOOGLE tokens are still valid.
BryanTrach-MSFT
on 15 Dec 2018
@mattchenderson Can you help with this?
cephalin
on 11 Jan 2019
@bbi-yggy is the token store enabled for your app? The token store setting can be found in the Authentication / Authorization blade of the portal. If so, do you see any of the expected tokens if you navigate to the built-in /.auth/me endpoint of your web app?
cgillum
on 23 Jan 2019
Hi @cgillum, thanks for responding this this thread. To be clear, I have everything working with my app - I logged this issue because the documentation does not seem to be consistent with how it actually works. I am also now 5 weeks more experienced with Azure and Google auth, so possibly I was more easily confused back in December. :-)
BBI-YggyKing
on 25 Jan 2019
@bbi-yggy I think what @cgillum is saying is that X-MS-TOKEN-GOOGLE is expected unless there's some condition in your app's auth configuration that makes it not show up and trying to get to the bottom of why it's not showing up for you.
cephalin
on 30 Jan 2019
I'm not sure. I have what I need for now, so I will close this ticket. Many thanks for your attention.
BBI-YggyKing
on 31 Jan 2019
Related issues
Ponant
·
3Comments
DeepPuddles
·
3Comments
ianpowell2017
·
3Comments
bityob
·
3Comments
spottedmahn
·
3Comments
Most helpful comment
@bbi-yggy Yes, the x-ms-client-principal deals with the user profile that is authenticated.
We have assigned the issue to the doc author to see if they would consider adding steps around using this value and to verify if the X-MS-Token-GOOGLE tokens are still valid.