Oliver/modcomms
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
modcomms/backend/app
History
michael dd5ee09d07 Fix JWT signature verification by requesting correct token audience 
- Change frontend apiTokenRequest scopes from OpenID-only to CLIENT_ID/.default
  This makes Azure AD issue tokens with audience = app client ID instead of Graph API
- Add diagnostic logging in backend to show token claims before verification
- Fixes 401 Unauthorized errors on all API calls after login

🤖 Generated with [Claude Code](https://claude.com/claude-code)

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
2025-12-18 16:59:54 -06:00
..
agents permissions changes 2025-12-18 16:51:27 +00:00
api Connect frontend to PostgreSQL database via API 2025-12-18 13:50:37 -06:00
dependencies Add MSAL debug logging to frontend and backend 2025-12-18 13:11:30 -06:00
models permissions changes 2025-12-18 16:51:27 +00:00
repositories Connect frontend to PostgreSQL database via API 2025-12-18 13:50:37 -06:00
services Fix JWT signature verification by requesting correct token audience 2025-12-18 16:59:54 -06:00
websocket permissions changes 2025-12-18 16:51:27 +00:00
__init__.py permissions changes 2025-12-18 16:51:27 +00:00
config.py permissions changes 2025-12-18 16:51:27 +00:00
main.py permissions changes 2025-12-18 16:51:27 +00:00