How to get the user flow ID from Microsoft Entra ID?
I am trying to disable sign-up flow from my user flow. Apparently, this need to be done by Graph API as described here.
I am stuck trying to retrieve the user flow ID. I get the following error:
{
"error": {
"code": "AADB2C",
"message": "The application does not have any of the required application permissions (Policy.ReadWrite.AuthenticationFlows, EventListener.Read.All, EventListener.ReadWrite.All, Application.Read.All, Application.ReadWrite.All) to access the resource. "
}
}
First, I make a request to get an access token.
POST https://{{domain}}.ciamlogin.com/{{tenantId}}/oauth2/v2.0/token HTTP/1.1
Host: login.microsoftonline.com:443
Content-Type: application/x-www-form-urlencoded
client_id={{clientId}}
&scope=https%3A%2F%2Fgraph.microsoft.com%2F.default
&client_secret={{clientSecrect}}
&grant_type=client_credentials
Second, I make a request to get the user flow ID.
GET https://graph.microsoft.com/beta/identity/authenticationEventsFlows HTTP/1.1
Accept: application/json
Authorization: Bearer {{accessToken}}
I get the described permission error above. But I can see that my application has the permission added.
Here are the steps to (1) get the access token, (2) get the user flow id and (3) disable the sign up flow.
Get Access Token: https://learn.microsoft.com/en-us/entra/identity-platform/v2-oauth2-client-creds-grant-flow#first-case-access-token-request-with-a-shared-secret
POST https://{{domain}}.ciamlogin.com/{{tenantId}}/oauth2/v2.0/token HTTP/1.1 Host: login.microsoftonline.com:443 Content-Type: application/x-www-form-urlencoded client_id={{clientId}} &scope=https%3A%2F%2Fgraph.microsoft.com%2F.default &client_secret={{clientSecrect}} &grant_type=client_credentialsGet User Flow ID: https://learn.microsoft.com/en-us/answers/questions/1611622/external-identity-user-flows-disabling-sign-up-in GET https://graph.microsoft.com/beta/identity/authenticationEventsFlows
HTTP/1.1 Accept: application/json Authorization: Bearer {{accessToken}}Disable sign up flow: https://learn.microsoft.com/en-us/answers/questions/1611622/external-identity-user-flows-disabling-sign-up-in
PATCH https://graph.microsoft.com/beta/identity/authenticationEventsFlows/{{userFlowId}} HTTP/1.1 Content-Type: application/json Accept: application/json Authorization: Bearer {{accessToken}} { "@odata.type": "#microsoft.graph.externalUsersSelfServiceSignUpEventsFlow", "onInteractiveAuthFlowStart": { "@odata.type": "#microsoft.graph.onInteractiveAuthFlowStartExternalUsersSelfServiceSignUp", "isSignUpAllowed": false } }
- Get the full/absolute URL of an image webpart retrieved via the REST API
- How to Embed Editable Excel File in Angular 10 App with .NET Core 3 Backend and OAuth Token Authentication?
- Microsoft Entra ID CIAM – AADSTS65001: User or admin has not consented (Native Authentication)
- microsoft graph call records get pstn - won't honor top 10 limit
- How to get the user flow ID from Microsoft Entra ID?
- Azure GraphAPI ISODate Input
- Adding Graph API application permission via Terraform shows corrupted IDs instead of scope names
- How to iterate through paginated results in the Python SDK for Microsoft Graph?
- Entra ID Schema Extension with custom Namespace
- powershell query with graph api
- Insufficient Privileges error when retrieving AD User's Entra ID from Microsoft Graph API using email address
- Why is my Web API with Application Permissions to Bookings.ReadWrite.All unauthorized when querying Graph API Bookings endpoints
- Creating Class Notebooks with MsGraph
- Resource not found for segment 'root:' in onedrive graph api
- PowerShell Graph SDK to retrieve Azure AD / Entra B2C Resource Group Name
- Sharepoint PDF Url return 401
- Why do I keep getting "401 unauthorized" response when sending mails through Graph API with delegated access?
- How do I Create a new message draft using MIME format in MsGraph SDK 5.0
- How to get list of Planner Tasks via Microsoft Graph similar to My Tasks web page?
- Does Microsoft Graph SDK supports filtering of Planner Tasks
- Changing Azure PIM Group approvals and notification settings via MS Graph API
- HTTP request to update Service Principal in Microsoft Entra ID fails for POST calls
- How to use range intersection endpoint of MS Graph API?
- Microsoft Graph API ADB2C signInActivity update lag
- Microsoft Graph: Invite PSTN Participant to Teams Call Returns 200 OK but No Call Received
- Azure - How to update the password profile of a user in Azure AD B2C using the Microsoft Graph API?
- Unable to filter the service principals by appOwnerOrganizationId property
- Assigning Roles to a Group and scoping that to an Admin Unit programatically in Entra
- Using Graph API to query SharePoint list items and expand user field
- How to get list of Planner Plans via Microsoft Graph similar to My Plans web page?