![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(217.60000000000002, 96%, 31%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMJ%3C/text%3E%3C/svg%3E)
Azure App Service
Azure App Service is a service used to create and deploy scalable, mission-critical web apps.
7,291 questions
Thanks for posting your question in the Microsoft Q&A forum.
To proceed, follow these steps:
- Obtain a token specifically for Log Analytics on behalf of the user. Implement MSAL in your application to manage token acquisition. This library facilitates obtaining tokens for different Azure resources.
- Verify that your app registration has the appropriate delegated permissions configured for Log Analytics. Typically, you will need the "Data.Read" permission for Log Analytics.
- basic example using C# and MSAL:
using Microsoft.Identity.Client;
// Configure the MSAL client
var app = ConfidentialClientApplicationBuilder
.Create(clientId)
.WithClientSecret(clientSecret)
.WithAuthority(AzureCloudInstance.AzurePublic, tenantId)
.Build();
// Get the user's access token from Easy Auth
string userAccessToken = HttpContext.Request.Headers["X-MS-TOKEN-AAD-ACCESS-TOKEN"];
// Use the user's access token to get a token for Log Analytics
string[] scopes = new string[] { "https://api.loganalytics.io/Data.Read" };
var result = await app.AcquireTokenOnBehalfOf(scopes, new UserAssertion(userAccessToken))
.ExecuteAsync();
string logAnalyticsToken = result.AccessToken;
Please don't forget to close up the thread here by upvoting and accept it as an answer if it is helpful