Logo Questions Linux Laravel Mysql Ubuntu Git Menu
 

AADSTS9002325: Proof Key for Code Exchange is required for cross-origin authorization code redemption

I created a spa application owned by my organization only, but there was a problem when I requested code. How can I resolve it?

enter image description here

like image 425
user14504804 Avatar asked Nov 05 '20 07:11

user14504804


People also ask

What is proof key for code exchange?

Proof Key for Code Exchange (abbreviated PKCE, pronounced “pixie”) is an extension to the authorization code flow to prevent CSRF and authorization code injection attacks.

What is OAuth PKCE?

PKCE OAuth OIDC. PKCE is an OAuth 2.0 security extension for public clients on mobile devices intended to avoid a malicious programme creeping into the same computer from intercepting the authorisation code. The RFC 7636 introduction discusses the mechanisms of such an attack.

What is redirect URI in Azure App registration?

A redirect URI, or reply URL, is the location where the authorization server sends the user once the app has been successfully authorized and granted an authorization code or access token.


Video Answer


1 Answers

I can reproduce your problem, you have to add the redirect URL under the web (not single page application). After that, you will be able to use the auth code flow to get the code.

enter image description here

Similar problem,see: here and here and here.

like image 200
Carl Zhao Avatar answered Oct 19 '22 13:10

Carl Zhao