azure active directory – Roles for a SPA and API setup in Microsoft Intra ID

admin

I have setup a FastAPI with FastAPI-Azure-Auth. It is a API and a Swagger page (SPA) to test the API. I have an app registration for the API and one for the Swagger page. On the API app registration I added a role named “Role7” on my user.

On the swagger page app reg I added a “Role1” to my user.

Swagger page APP reg:

I added permission to the API app reg.
enter image description here

By problem is in the claims i get in the Swagger page I get “Role7” which is from the API app reg. And I would expect to get the roles I have setup in Swagger page app reg. How do I setup the appregs so it will be the web page and not the API that controls access and roles?

Read more here: Source link