I want to know about the relationship between "Azure AD Graph Retirement" and the Azure app set as the ID provider of AppService

耕太 坂本 0 Reputation points
2024-11-08T02:27:16.56+00:00

I would like to know if the "Important Update: Azure AD Graph Retirement" posted on the following site will affect my AppService.

https://techcommunity.microsoft.com/blog/identity/what%e2%80%99s-new-in-microsoft-entra-%e2%80%93-june-2024/3796387

I have built an API in App Service, and have set an application registered with Entra ID as the ID provider.

This application was created several years ago, so only "User.Read" for "Azure Active Directory Graph" is set as the API permission. In addition, the scope is set by publishing the API.

When accessing the API built in App Service, I use "ADAL.js" to obtain a token from the application, and use that token to access the API built in App Service.

I do not use the Graph API at all with this application.

Given this situation, if anyone knows whether "Azure AD Graph Retirement" will have any impact, I would appreciate it if you could let me know.

We are currently in the process of migrating from using ADAL.js to using MSAL.js, but there is a possibility that we will not be able to complete the migration in time for January 31, 2025, so we would like to understand whether there will be any impacts.

*This text was created using Google Translate.

Microsoft Graph
Microsoft Graph
A Microsoft programmability model that exposes REST APIs and client libraries to access data on Microsoft 365 services.
12,268 questions
Azure App Service
Azure App Service
Azure App Service is a service used to create and deploy scalable, mission-critical web apps.
7,905 questions
Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
22,104 questions
0 comments

1 answer

Sort by: Most helpful
Most helpful Newest Oldest
  1. akinbade abiola 18,305 Reputation points
    2024-11-08T08:03:25.7033333+00:00

    Yes, your app has “User.Read” permission for the Azure AD Graph API. This permission is associated with the legacy Azure AD Graph API. Also, ADAL.js is also being deprecated in favor of the MSal

    You need to migrate: https://video2.skills-academy.com/en-us/graph/migrate-azure-ad-graph-overview

    See FAQs and recommendations here:

    https://video2.skills-academy.com/en-us/graph/migrate-azure-ad-graph-faq?source=recommendations

    https://video2.skills-academy.com/en-us/entra/identity/monitoring-health/recommendation-migrate-to-microsoft-graph-api?source=recommendations

    You can mark it 'Accept Answer' and 'Upvote' if this helped you

    Regards,

    Abiola

    0 comments

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.