I am facing issue of re-authentication and authorization issue into logic app deployment using ARM template. I have found several solutions but none of them worked for me. Actually my requirement is slightly different, which I am writing below.
Introduction
We are working for our client and our client do not have office365 complete subscription. We had introduced solution to my client with logic apps.
We have several logic apps in that we are using office365 connectors for notification and upload data on SharePoint, these connector are authenticated with my organization's credentials while this entire logic app is deployed at my client's Azure Cloud. In brief, these logic apps are hybrid logic apps which means logic apps have office365 connector of my company and this logic app deployed in client's Azure cloud environment.
Issue
We are facing issue whenever we deploy logic app's arm template, logic apps ask for the authentication for office365 steps.
I followed following documentations and solutions but didn't worked for me due to hybrid solution.
- https://www.bruttin.com/2017/06/13/deploy-logic-app-with-arm.html
- https://social.msdn.microsoft.com/Forums/en-US/7a9e8ebe-3438-4916-8041-2058fcdc1e31/arm-resource-manager-template-connection-parameters-for-oauth-googlesheet-managed-api?forum=azurelogicapps
- https://docs.microsoft.com/en-us/azure/logic-apps/logic-apps-azure-resource-manager-templates-overview#authenticate-connections
- Azure Logic App with SharePoint Connection
- ARM template Office 365 connection for logic apps
- https://blogs.msdn.microsoft.com/logicapps/2016/02/23/deploying-in-the-logic-apps-preview-refresh/
- http://blog.davidebbo.com/2015/01/azure-resource-manager-client.html
- Azure Logic App - Office365 connection creation by ARM template
- https://github.com/logicappsio/LogicAppConnectionAuth (For authorize to a connection, but it authorize if and only if it is internal or external cloud)
- How to deploy Logic App with o365 Connector within ARM template
After hit and try above solutions, I come to know all solutions are correct but it wouldn't work in my case because I am using hybrid connection in a logic app. There are couple of questions also
When MFA enabled. do I need manual authentication in logic app every time after deployment?
When I deploy the arm template via DevOps and perform execution of the logic app then connection says unauthorize and give me following error.
{ "error_description": "Exception of type 'Microsoft.IdentityModel.Tokens.AudienceUriValidationFailedException' was thrown." }
Please let me know if anyone has a solution of this issue.
