how to integrate graph api in apim service
I have an Azure Application name and I can access the enterprise application properties with the help of graph Api.
I want to integrate the below graph Api into my APIM service for fetching the properties. Is there any reference for creating a mock Api in Api management service?
Microsoft Graph:
GET https://graph.microsoft.com/v1.0/servicePrincipals/?$filter=displayName eq 'Demo App' &$select=appId,appDisplayName
can i use the policies "rewrite-uri" for generating token and then pass it to the "send-request".
or is there any simple way available for integration?
Initially, I registered one application and granted Application.Read.All Microsoft Graph permission of Application type with admin consent as below:
Make sure to add redirect URI as "https://authorization-manager.consent.azure-apim.net/redirect/apim/YOUR-APIM-SERVICENAME" in Web platform of application as below:
Now, create credential provider in your APIM service with Identity provider as Azure Active Directory v1, grant type as client credentials and resource URL as https://graph.microsoft.com like this:
Under Connection tab, enter client ID and client secret values of your app registration with connection name:
You can confirm it by checking the status of connection, visiting newly created credential provider like this:
Create new HTTP API with "https://graph.microsoft.com/v1.0" as Web service URL:
Create GET operation in it with URL as /servicePrincipals :
Make use of below sample policy file code that generates token and use it to call Graph API:
<policies>
<inbound>
<base />
<get-authorization-context provider-id="graphcred01" authorization-id="graphconnection" context-variable-name="auth-context" identity-type="managed" ignore-error="false" />
<set-header name="Authorization" exists-action="override">
<value>@("Bearer " + ((Authorization)context.Variables.GetValueOrDefault("auth-context"))?.AccessToken)</value>
</set-header>
<!-- Rewrite URI to include filter and select parameters, with properly escaped characters -->
<rewrite-uri template="/servicePrincipals/?$filter=displayName eq 'DemoApp'&$select=appId,appDisplayName" />
</inbound>
<backend>
<base />
</backend>
<outbound>
<base />
</outbound>
<on-error>
<base />
</on-error>
</policies>
Response:
Reference:
Create connection to Microsoft Graph API - Azure API Management | Microsoft
- APIM Combine throttling policy approach
- Azure API Management access from Microsoft Fabric - handling IP restrictions
- Azure Api Management restrict users from operational level
- Publish apim policy with bicep set-body and set-backend-service at same time
- Terrform Module for Azure APIM Definitions
- Securing an azure API with oauth: Able to retrieve a token but token is invalid
- How to add users to Administrators group in new Azure API Management Developer Portal when only using Azure AD Identity?
- how to integrate graph api in apim service
- API Management service - 2 APIs for same service
- How to log Azure APIM user in Application Insights
- Azure API Management service - getting the subscription key into Application Insights
- Bing Search API: Getting 401 Acces Denied error while using the right suscription key
- Azure Api Management append api to existing api with arm
- Configuration issue in azure api management service
- In a hybrid scenario, should APIM used for system to system Azure cloud to on-premises invocations?
- Why does the subscription key have product=<name> when I select a Product?
- How to using the generated token to authenticate the ADF REST API
- Validated Open API spec fails to upload on Azure API Management
- How to temporary stop Azure API Management Service
- How to specify rewrite url for query string parameters in Azure API Management
- Enabling minimum apiVersion to 2021-08-01 in Azure API Management causing saving issues or deployment errors for existing logic apps
- Migrating from validate-jwt to validate-azure-ad-token policy
- Getting a 404 error when I try to debug a policy using Azure APIM management extension in Visual Studio Code
- Apim (private endpoint) named value, keyvault secret 404
- How do I set scope in Azure API Manager (APIM) when using D_application_id
- SSL/TLS error on exposing Fuction App in API Management
- Curly brace literals in an Azure APIM variable expression
- Azure APIM: Identifying the API resource id from the portal
- HTTP/1.1 401 Unauthorized - Developer portal
- Azure Management REST API - "Authentication failed. The 'Authorization' header is provided in an invalid format."