azure-ad-b2c - Azure B2C - IDX10501：签名验证失败。无法匹配键：

问题描述

我有一个 .net core Api 和一个连接到 Api 的 Spa 应用程序。一切正常。现在我想使用客户端密码从 CLI 向 Api 进行身份验证。我使用获取令牌，AcquireTokenForClient但是当我将请求发送到 Api 时出现错误： => 08:46:30.130 +03:00 [Information] Failed to validate the token. Microsoft.IdentityModel.Tokens.SecurityTokenSignatureKeyNotFoundException: IDX10501: Signature validation failed. Unable to match key:kid: 'nOo3ZDrODXEK1jKWhXslHR_KXEq'.

API的配置是

    "Instance": "https://xxx.b2clogin.com", 
    "ClientId": "CLIENTID",
    "Domain": "xxx.onmicrosoft.com",
    "TenantId": "ID",
    "SignedOutCallbackPath": "/signout/B2C_1_susi",
    "SignUpSignInPolicyId": "B2C_1_SignUpSignIn",
    "ResetPasswordPolicyId": "b2c_1_Reset",
    "EditProfilePolicyId": "b2c_1_EditProfile", // Optional profile editing policy
  },

and the configuration for CLI application

{
  "Instance": "https://login.microsoftonline.com/{0}",
  "Tenant": "xxx.onmicrosoft.com",
  "TenantId": "ID",
  "ClientId": "CLICLIENTID",
  "Domain": "xxx.onmicrosoft.com",
  "ClientSecret": "secret",
  "TodoListBaseAddress": "http://localhost:5000",
  "TodoListScope": "api://APICLIENTID/.default"
}```


Any idea?

标签： azure-ad-b2cdaemon

azure-ad-b2c - Azure B2C - IDX10501：签名验证失败。无法匹配键：

问题描述

解决方案

推荐阅读