发表新帖
发表新帖

Receiving a 'Forbidden (403)' when connecting to Power BI API

前端 未结
关注
4 633
一向
一向 2021-01-22 14:32

We\'ve been trying to follow this Power BI article so that we can embed reports/dashboards in our SaaS product. Specifically, we\'re stuck at Step 3, \'Create the Embed Token.\

相关标签:
4条回答
  • 暖寄归人
    2021-01-22 15:08

    We have found that the group (App Workspace) needs to be owned by the same user who authenticates with Azure. This user also needs to be listed as the owner on the Azure App that you register.Once you revised permissions. Don't forget to republish powerbi report then only it reflects changes.

    0 讨论(0)
  • 夕颜
    2021-01-22 15:26

    You are using client credential flow to acquire token for Power BI API . Currently , Power BI REST API only supports delegated permissions but does not support any application permissions . So your access token get insufficient access. To use Power BI, authentication needs to be based on a particular user. Related thread here and here are for your reference .

    According to your document ,the scenario is app owns access to the data. Users will not necessarily be Power BI users and the application controls authentication and access for the end users. Then you can use resource owner flow to acquiring token .

    A sample of this is available within Controllers\HomeController.cs of the App Owns Data sample.

    From the code sample , it is acquring token using a user password credential ,not application's credential :

                // Create a user password cradentials.
            var credential = new UserPasswordCredential(Username, Password);

            // Authenticate using created credentials
            var authenticationContext = new AuthenticationContext(AuthorityUrl);
            var authenticationResult = await authenticationContext.AcquireTokenAsync(ResourceUrl, ClientId, credential);

    Please refer to Authenticate users and get an Azure AD access token for your Power BI app and check the Access token for non-Power BI users (app owns data) section .

    0 讨论(0)
  • 北荒
    2021-01-22 15:26

    The best way to get the real exceptions from Power BI is to add a DelegatingHandler and look at the headers / body of the message.

    https://github.com/Microsoft/PowerBI-CSharp/compare/master...mikeblakeuk:feature/exceptionHandler

    0 讨论(0)
  • 忘了有多久
    2021-01-22 15:29

    This is because you are trying to call some Reports/Dashboards that are in My Workspace using the SPN authentication. Currently this is the known limitation for SPN

    Reference

    0 讨论(0)
 看不清?
提交回复
热议问题