Using reconsile api to get access token for AzureAD OpenID Connect

kushalborda1997

Hi,
I am using /api/jwt/reconcile api to get access token, it is working fine with Google IDP, but when I try to use it with AzureAD OpenID Connect, I am getting following error:
AzureAD error for reconcile API.png
It is asking for data.code and data.redirect_uri.
When I am running for same thing for Google IDP then It's working fine without data.code and data.redirect_uri.
After that I have passed data.code and data.redirect_uri parameter value for AzureAD OpenID Connect. Then also it's showing error:
AzureAD error for reconcile API with code and r_uri.png
I have entered all correct details for this API according to FusionAuth Doc. But I am getting this error.
This is Event log of AzureAD OpenID Connect Identity provider after calling API.

I would really appreciate it if you could provide any advice or assistance to help me resolve this issue.

dan

@kushalborda1997 Hiya,

We recently updated the documentation to make it more clear you shouldn't use the /api/jwt/reconcile endpoint for any identity providers except the external JWT provider. We'll change the application to make the error message clearer; here's the tracking issue: https://github.com/FusionAuth/fusionauth-issues/issues/2074

You should use the OIDC provider and the complete login endpoint. Here's documentation that should help: https://fusionauth.io/docs/v1/tech/apis/identity-providers/openid-connect#complete-an-openid-connect-login

Hope that helps!