Oliver/modcomms
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
modcomms/backend
History
michael dd5ee09d07 Fix JWT signature verification by requesting correct token audience 
- Change frontend apiTokenRequest scopes from OpenID-only to CLIENT_ID/.default
  This makes Azure AD issue tokens with audience = app client ID instead of Graph API
- Add diagnostic logging in backend to show token claims before verification
- Fixes 401 Unauthorized errors on all API calls after login

🤖 Generated with [Claude Code](https://claude.com/claude-code)

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
2025-12-18 16:59:54 -06:00
..
alembic permissions changes 2025-12-18 16:51:27 +00:00
app Fix JWT signature verification by requesting correct token audience 2025-12-18 16:59:54 -06:00
.env.example permissions changes 2025-12-18 16:51:27 +00:00
alembic.ini permissions changes 2025-12-18 16:51:27 +00:00
Dockerfile permissions changes 2025-12-18 16:51:27 +00:00
requirements.txt permissions changes 2025-12-18 16:51:27 +00:00