web
You’re offline. This is a read only version of the page.
close
Skip to main content

Notifications

Announcements

Welcome to the Power Platform Communities
Season of Giving Solutions is Here!
Explore Copilot Studio Forums, Blogs & Galleries!
News and Announcements icon
Community site session details

Community site session details

Session Id :
Power Platform Community / Forums / Power Pages / Secure Web Api Call (h...
Power Pages
Unanswered

Secure Web Api Call (hosted in Azure APIM) from Portals/Power pages using Azure AD B2C / extend token information

(0) ShareShare
ReportReport
Posted on by michelcarlo 66

Hi all,

 

I've been digging what are the options and how to secure an API call from Portals/Pages to external APIs. 

The Portal already uses Azure AD B2C for authentication and have some custom information in their B2C tokens, but so far I could not figure out how to use it (or if I should use B2C tokens to authenticating against external APIs).

 

So far I could obtain an JWT token from Portals using this approach: https://carldesouza.com/jwt-json-web-tokens-and-power-apps-portals/

 

However I can't find references on how to extend or add more info to this token as it seems generated automatically by Portals (and regardless of the authentication method, which makes this token being different from the B2C one, similarly to this thread: https://powerusers.microsoft.com/t5/Power-Apps-Portals/Secure-an-external-net-5-0-WebAPI-using-PowerApps-portal-token/td-p/1391818)

 

Does someone know how to extend this token generated by portal or how to use the B2C token instead?


Thanks

Categories:
Customize & extend
I have the same question (0)
  • Peragin Profile Picture
    Peragin 160 on at

    Hi @michelcarlo ,

     

    You won't be able to extend the token, we tried!

     

    For our use case where we were grabbing data for the logged in user from a 3rd party API that we had wrapped in an Azure function. Using the power pages token, we were able to extract the username (guid) from the token payload through an APIM inbound policy after validating the JWT. We were then able to pass this guid to the backend API. The Azure function got the UPN for the logged on portal user from Graph and passed this to the 3rd party API and handled the return - passing it back to APIM and the portal.

    The backend API (Azure function) and APIM was secured using managed ID.

    Hope this helps.

  • michelcarlo Profile Picture
    michelcarlo 66 on at

    @KH_2437 thanks for your response. That seems the way to go.

Under review

Thank you for your reply! To ensure a great experience for everyone, your content is awaiting approval by our Community Managers. Please check back later.

Helpful resources

News and Announcements

Welcome to the Power Platform Communities
Season of Giving Solutions is Here!
Explore Copilot Studio Forums, Blogs & Galleries!

Quick Links

Forum hierarchy changes are complete!

In our never-ending quest to improve we are simplifying the forum hierarchy…

Ajay Kumar Gannamaneni – Community Spotlight

We are honored to recognize Ajay Kumar Gannamaneni as our Community Spotlight for December…

Congratulations to the November Top 10 Community Leaders!

These are the community rock stars!

Leaderboard > Power Pages

#1
Jerry-IN Profile Picture

Jerry-IN 71

#2
Fubar Profile Picture

Fubar 62 Super User 2025 Season 2

#3
sannavajjala87 Profile Picture

sannavajjala87 31

Last 30 days Overall leaderboard

Featured topics

Solution to LinkedIn Authentication in Power Apps Portals
Welcome to the Power Pages forum!

Product updates

Microsoft Power Platform Community release plans