how to authenticate to Azure time series insights query API?











up vote
0
down vote

favorite












I keep getting a AuthenticationFailed error with a InvalidAuthenticationTokenAudience inner error when attempting to query the /environments endpoint.



I have already created an app in the Azure Active Directory, given it access in the time series insights management portal and I can already get an Oauth 2.0 Access token from the auth URL.



I have tried giving the token url the 'https://api.timeseries.azure.com/' resource/audience/scope but the API keeps returning the same error message:




{
"error": {
"code": "AuthenticationFailed",
"message": "Server failed to authenticate the request. The token has been obtained from wrong audience or resource.",
"innerError": {
"code": "InvalidAuthenticationTokenAudience",
"message": "The access token has been obtained from wrong audience or resource '00000002-0000-0000-c000-000000000000'. It should
exactly match (including forward slash) with one of the allowed
audiences 'https://api.timeseries.azure.com/'."
}
} }




I'm using Postman with the Oauth 2.0 authentication type, the client credentials Grant Type and send as basic Auth Header option for the token request.



Has anyone tried this with success?



Update 01:
The decoded (using JWT as suggested in comments) payload portion of one of the tokens shows the that the aud field is 00000002-0000-0000-c000-000000000000. Which is definitely wrong.






azure azure-active-directory postman azure-timeseries-insights







share|improve this question
























  • Could you decode your access token in jwt.io and provide the result in your question?
    – Joy Wang
    Nov 8 at 3:03










  • @JoyWang The aud field has the wrong value (see question Update 01), but what else do you want to know from the decoded token?
    – pablete
    Nov 8 at 12:43















up vote
0
down vote

favorite












I keep getting a AuthenticationFailed error with a InvalidAuthenticationTokenAudience inner error when attempting to query the /environments endpoint.



I have already created an app in the Azure Active Directory, given it access in the time series insights management portal and I can already get an Oauth 2.0 Access token from the auth URL.



I have tried giving the token url the 'https://api.timeseries.azure.com/' resource/audience/scope but the API keeps returning the same error message:




{
"error": {
"code": "AuthenticationFailed",
"message": "Server failed to authenticate the request. The token has been obtained from wrong audience or resource.",
"innerError": {
"code": "InvalidAuthenticationTokenAudience",
"message": "The access token has been obtained from wrong audience or resource '00000002-0000-0000-c000-000000000000'. It should
exactly match (including forward slash) with one of the allowed
audiences 'https://api.timeseries.azure.com/'."
}
} }




I'm using Postman with the Oauth 2.0 authentication type, the client credentials Grant Type and send as basic Auth Header option for the token request.



Has anyone tried this with success?



Update 01:
The decoded (using JWT as suggested in comments) payload portion of one of the tokens shows the that the aud field is 00000002-0000-0000-c000-000000000000. Which is definitely wrong.






azure azure-active-directory postman azure-timeseries-insights







share|improve this question
























  • Could you decode your access token in jwt.io and provide the result in your question?
    – Joy Wang
    Nov 8 at 3:03










  • @JoyWang The aud field has the wrong value (see question Update 01), but what else do you want to know from the decoded token?
    – pablete
    Nov 8 at 12:43













up vote
0
down vote

favorite









up vote
0
down vote

favorite











I keep getting a AuthenticationFailed error with a InvalidAuthenticationTokenAudience inner error when attempting to query the /environments endpoint.



I have already created an app in the Azure Active Directory, given it access in the time series insights management portal and I can already get an Oauth 2.0 Access token from the auth URL.



I have tried giving the token url the 'https://api.timeseries.azure.com/' resource/audience/scope but the API keeps returning the same error message:




{
"error": {
"code": "AuthenticationFailed",
"message": "Server failed to authenticate the request. The token has been obtained from wrong audience or resource.",
"innerError": {
"code": "InvalidAuthenticationTokenAudience",
"message": "The access token has been obtained from wrong audience or resource '00000002-0000-0000-c000-000000000000'. It should
exactly match (including forward slash) with one of the allowed
audiences 'https://api.timeseries.azure.com/'."
}
} }




I'm using Postman with the Oauth 2.0 authentication type, the client credentials Grant Type and send as basic Auth Header option for the token request.



Has anyone tried this with success?



Update 01:
The decoded (using JWT as suggested in comments) payload portion of one of the tokens shows the that the aud field is 00000002-0000-0000-c000-000000000000. Which is definitely wrong.






azure azure-active-directory postman azure-timeseries-insights







share|improve this question















I keep getting a AuthenticationFailed error with a InvalidAuthenticationTokenAudience inner error when attempting to query the /environments endpoint.



I have already created an app in the Azure Active Directory, given it access in the time series insights management portal and I can already get an Oauth 2.0 Access token from the auth URL.



I have tried giving the token url the 'https://api.timeseries.azure.com/' resource/audience/scope but the API keeps returning the same error message:




{
"error": {
"code": "AuthenticationFailed",
"message": "Server failed to authenticate the request. The token has been obtained from wrong audience or resource.",
"innerError": {
"code": "InvalidAuthenticationTokenAudience",
"message": "The access token has been obtained from wrong audience or resource '00000002-0000-0000-c000-000000000000'. It should
exactly match (including forward slash) with one of the allowed
audiences 'https://api.timeseries.azure.com/'."
}
} }




I'm using Postman with the Oauth 2.0 authentication type, the client credentials Grant Type and send as basic Auth Header option for the token request.



Has anyone tried this with success?



Update 01:
The decoded (using JWT as suggested in comments) payload portion of one of the tokens shows the that the aud field is 00000002-0000-0000-c000-000000000000. Which is definitely wrong.






azure azure-active-directory postman azure-timeseries-insights




azure azure-active-directory postman azure-timeseries-insights






share|improve this question















share|improve this question













share|improve this question




share|improve this question








edited Nov 8 at 12:41

























asked Nov 7 at 19:20









pablete

135311




135311












  • Could you decode your access token in jwt.io and provide the result in your question?
    – Joy Wang
    Nov 8 at 3:03










  • @JoyWang The aud field has the wrong value (see question Update 01), but what else do you want to know from the decoded token?
    – pablete
    Nov 8 at 12:43


















  • Could you decode your access token in jwt.io and provide the result in your question?
    – Joy Wang
    Nov 8 at 3:03










  • @JoyWang The aud field has the wrong value (see question Update 01), but what else do you want to know from the decoded token?
    – pablete
    Nov 8 at 12:43
















Could you decode your access token in jwt.io and provide the result in your question?
– Joy Wang
Nov 8 at 3:03




Could you decode your access token in jwt.io and provide the result in your question?
– Joy Wang
Nov 8 at 3:03












@JoyWang The aud field has the wrong value (see question Update 01), but what else do you want to know from the decoded token?
– pablete
Nov 8 at 12:43




@JoyWang The aud field has the wrong value (see question Update 01), but what else do you want to know from the decoded token?
– pablete
Nov 8 at 12:43












1 Answer
1






active

oldest

votes

















up vote
3
down vote



accepted










Based on the exception, it indicates that the resource is not matching https://api.timeseries.azure.com/ when acquire the access token.



So please make sure that the resource is https://api.timeseries.azure.com/, for more information please refer to the screenshot.



Get access token



enter image description here



I test Get environments API, it works correctly for me. 



GET https://api.timeseries.azure.com/environments?api-version=2016-12-12


enter image description here






share|improve this answer





















  • Great it works. I was using postman's infrastructure to handle the token request and the subsequent call to the API. I was providing the resource value into the 'Scope' field of the Oauth 2 get new access token form of postman. I I were to use those, where should I include the resources I'm trying to get a token for?
    – pablete
    Nov 8 at 12:30











Your Answer






StackExchange.ifUsing("editor", function () {
StackExchange.using("externalEditor", function () {
StackExchange.using("snippets", function () {
StackExchange.snippets.init();
});
});
}, "code-snippets");

StackExchange.ready(function() {
var channelOptions = {
tags: "".split(" "),
id: "1"
};
initTagRenderer("".split(" "), "".split(" "), channelOptions);

StackExchange.using("externalEditor", function() {
// Have to fire editor after snippets, if snippets enabled
if (StackExchange.settings.snippets.snippetsEnabled) {
StackExchange.using("snippets", function() {
createEditor();
});
}
else {
createEditor();
}
});

function createEditor() {
StackExchange.prepareEditor({
heartbeatType: 'answer',
convertImagesToLinks: true,
noModals: true,
showLowRepImageUploadWarning: true,
reputationToPostImages: 10,
bindNavPrevention: true,
postfix: "",
imageUploader: {
brandingHtml: "Powered by u003ca class="icon-imgur-white" href="https://imgur.com/"u003eu003c/au003e",
contentPolicyHtml: "User contributions licensed under u003ca href="https://creativecommons.org/licenses/by-sa/3.0/"u003ecc by-sa 3.0 with attribution requiredu003c/au003e u003ca href="https://stackoverflow.com/legal/content-policy"u003e(content policy)u003c/au003e",
allowUrls: true
},
onDemand: true,
discardSelector: ".discard-answer"
,immediatelyShowMarkdownHelp:true
});


}
});














 

draft saved


draft discarded


















StackExchange.ready(
function () {
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fstackoverflow.com%2fquestions%2f53196356%2fhow-to-authenticate-to-azure-time-series-insights-query-api%23new-answer', 'question_page');
}
);

Post as a guest















Required, but never shown

























1 Answer
1






active

oldest

votes








1 Answer
1






active

oldest

votes









active

oldest

votes






active

oldest

votes








up vote
3
down vote



accepted










Based on the exception, it indicates that the resource is not matching https://api.timeseries.azure.com/ when acquire the access token.



So please make sure that the resource is https://api.timeseries.azure.com/, for more information please refer to the screenshot.



Get access token



enter image description here



I test Get environments API, it works correctly for me. 



GET https://api.timeseries.azure.com/environments?api-version=2016-12-12


enter image description here






share|improve this answer





















  • Great it works. I was using postman's infrastructure to handle the token request and the subsequent call to the API. I was providing the resource value into the 'Scope' field of the Oauth 2 get new access token form of postman. I I were to use those, where should I include the resources I'm trying to get a token for?
    – pablete
    Nov 8 at 12:30















up vote
3
down vote



accepted










Based on the exception, it indicates that the resource is not matching https://api.timeseries.azure.com/ when acquire the access token.



So please make sure that the resource is https://api.timeseries.azure.com/, for more information please refer to the screenshot.



Get access token



enter image description here



I test Get environments API, it works correctly for me. 



GET https://api.timeseries.azure.com/environments?api-version=2016-12-12


enter image description here






share|improve this answer





















  • Great it works. I was using postman's infrastructure to handle the token request and the subsequent call to the API. I was providing the resource value into the 'Scope' field of the Oauth 2 get new access token form of postman. I I were to use those, where should I include the resources I'm trying to get a token for?
    – pablete
    Nov 8 at 12:30













up vote
3
down vote



accepted







up vote
3
down vote



accepted






Based on the exception, it indicates that the resource is not matching https://api.timeseries.azure.com/ when acquire the access token.



So please make sure that the resource is https://api.timeseries.azure.com/, for more information please refer to the screenshot.



Get access token



enter image description here



I test Get environments API, it works correctly for me. 



GET https://api.timeseries.azure.com/environments?api-version=2016-12-12


enter image description here






share|improve this answer












Based on the exception, it indicates that the resource is not matching https://api.timeseries.azure.com/ when acquire the access token.



So please make sure that the resource is https://api.timeseries.azure.com/, for more information please refer to the screenshot.



Get access token



enter image description here



I test Get environments API, it works correctly for me. 



GET https://api.timeseries.azure.com/environments?api-version=2016-12-12


enter image description here







share|improve this answer












share|improve this answer



share|improve this answer










answered Nov 8 at 6:14









Tom Sun

15.9k2921




15.9k2921












  • Great it works. I was using postman's infrastructure to handle the token request and the subsequent call to the API. I was providing the resource value into the 'Scope' field of the Oauth 2 get new access token form of postman. I I were to use those, where should I include the resources I'm trying to get a token for?
    – pablete
    Nov 8 at 12:30


















  • Great it works. I was using postman's infrastructure to handle the token request and the subsequent call to the API. I was providing the resource value into the 'Scope' field of the Oauth 2 get new access token form of postman. I I were to use those, where should I include the resources I'm trying to get a token for?
    – pablete
    Nov 8 at 12:30
















Great it works. I was using postman's infrastructure to handle the token request and the subsequent call to the API. I was providing the resource value into the 'Scope' field of the Oauth 2 get new access token form of postman. I I were to use those, where should I include the resources I'm trying to get a token for?
– pablete
Nov 8 at 12:30




Great it works. I was using postman's infrastructure to handle the token request and the subsequent call to the API. I was providing the resource value into the 'Scope' field of the Oauth 2 get new access token form of postman. I I were to use those, where should I include the resources I'm trying to get a token for?
– pablete
Nov 8 at 12:30


















 

draft saved


draft discarded



















































 


draft saved


draft discarded














StackExchange.ready(
function () {
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fstackoverflow.com%2fquestions%2f53196356%2fhow-to-authenticate-to-azure-time-series-insights-query-api%23new-answer', 'question_page');
}
);

Post as a guest















Required, but never shown





















































Required, but never shown














Required, but never shown












Required, but never shown







Required, but never shown

































Required, but never shown














Required, but never shown












Required, but never shown







Required, but never shown







-

這個網誌中的熱門文章

Tangent Lines Diagram Along Smooth Curve

圖片
7 1 I am trying to replicate a diagram and have a minimal example. I don't know how to add additional tangents between the specified points and preserve smoothness. documentclass{article} usepackage{tikz} usetikzlibrary{calc,intersections} begin{document} begin{tikzpicture} % Axes draw [->, name path=x] (-1,0) -- (11,0) node [right] {$x$}; draw [->] (0,-1) -- (0,6) node [above] {$y$}; % Origin node at (0,0) [below left] {$0$}; % Points coordinate (start) at (1,-0.8); coordinate (c1) at (3,3); coordinate (c2) at (5.5,1.5); coordinate (c3) at (8,4); coordinate (end) at (10.5,-0.8); % show the points foreach n in {start,c1,c2,c3,end} fill [black] (n) circle (2pt) node [below] {}; % join the coordinates draw [thick,name path=curve] (start) to[out=70,in=180] (c1) to[out=0,in=180]
閱讀完整內容

Yusuf al-Mu'taman ibn Hud

圖片
Main article: Taifa of Zaragoza Al-Mu'taman Ruler of Zaragoza Reign 1081–1085 Predecessor Ahmad al-Muqtadir Successor Al-Mustain II Born Zaragoza Died 1085 Full name Yusuf ibn Ahmad al-Mu'taman ibn Hūd House Banu Hud Yusuf ibn Ahmad al-Mu'taman ibn Hūd (Arabic: المؤتمن بالله يوسف إبن أحمد إبن هود ‎, al-Mutaman bi l-Lah , died c. 1085) was the third king of the Banu Hud dynasty who ruled over the Taifa of Zaragoza from 1081 to 1085. Yusuf al-Mutaman reigned during the height of power of Muslim Zaragoza , following the thriving period of his father Ahmad al-Muqtadir. He continued his father's efforts and created around him a court of intellectuals, living in the beautiful palace of Aljafería, nicknamed as "the palace of joy". Al-Mu'taman was also a scholarly king and a patron of science, philosophy and arts. As an example of a wise king, he knew astrology, philosophy, and especially mathematics, a discipline in which
閱讀完整內容

Zucchini

圖片
This article is about the vegetable. For other uses, see Zucchini (disambiguation). Zucchini (courgette) A striped and a uniform color zucchini Genus Cucurbita Species Cucurbita pepo Origin 19th century northern Italy The zucchini ( / z uː ˈ k iː n i / , American English) or courgette ( / k ʊər ˈ ʒ ɛ t / , British English) is a summer squash which can reach nearly 1 metre (100 cm; 39 in) in length, but is usually harvested when still immature at about 15 to 25 cm (6 to 10 in). [1] A zucchini is a thin-skinned cultivar of what in Britain and Ireland is referred to as a marrow. [2] [3] In South Africa, a zucchini is known as a baby marrow. Along with certain other squashes and pumpkins, the zucchini belongs to the species Cucurbita pepo . It can be dark or light green. A related hybrid, the golden zucchini, is a deep yellow or orange color. [4] In a culinary context, the zucchini is treated as a vegetable; it is usually cooked and presented as a savory dish o
閱讀完整內容