背景
我有一个可用的 ASP.NET Core Web 应用程序,它使用 Entra ID 身份验证:
builder.Services.AddAuthentication(OpenIdConnectDefaults.AuthenticationScheme)
.AddInMemoryTokenCaches();
为了使此身份验证正常工作,我创建了一个 Azure 应用程序注册,并且身份验证的配置包含相应的客户端 ID、客户端密钥和租户 ID。 我已经添加了 Azure 应用程序注册所需的图形权限。
我想在此 Web 应用程序中调用 Graph API 例如:
var meeting = new OnlineMeeting() { Subject = "demo meeting" };
var result = await graphClient.Me.OnlineMeetings.PostAsync(meeting);
我发现的所有示例代码要么使用设备流来获取
graphClientgraphClient问题
如何创建
graphClientGraphServiceClientTokenProviderClientSecretCredential// The client credentials flow requires that you request the
// /.default scope, and pre-configure your permissions on the
// app registration in Azure. An administrator must grant consent
// to those permissions beforehand.
var scopes = new[] { "https://graph.microsoft.com/.default" };
// Values from app registration
var clientId = "YOUR_CLIENT_ID";
var tenantId = "YOUR_TENANT_ID";
var clientSecret = "YOUR_CLIENT_SECRET";
// using Azure.Identity;
var options = new ClientSecretCredentialOptions
{
AuthorityHost = AzureAuthorityHosts.AzurePublicCloud,
};
// https://learn.microsoft.com/dotnet/api/azure.identity.clientsecretcredential
var clientSecretCredential = new ClientSecretCredential(
tenantId, clientId, clientSecret, options);
var graphClient = new GraphServiceClient(clientSecretCredential, scopes);