Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Need Help to setup the Prerequisites for bot-microsoft-search-api #649

Open
mohammadamer opened this issue Apr 28, 2023 · 11 comments
Open

Need Help to setup the Prerequisites for bot-microsoft-search-api #649

mohammadamer opened this issue Apr 28, 2023 · 11 comments

Comments

@mohammadamer
Copy link

Sample

bot-microsoft-search-api

Author(s)

@AhmadiRamin

Question

Hi!
I tried to setup the Prerequisites for bot-microsoft-search-api but unfortunately, I wasn't able to to start the bot locally.
The 9. Setup SSO is a link to another URL that explain again the setup of AAD and bot service and SSO connection.

Can you please point out what exactly need to be done in this step 9. Setup SSO and what exactly permissions do we need to add to the AAD App.

Would appreciate If you can provide details setup of the Prerequisites as this is the important steps to make the bot works.
@AhmadiRamin
Copy link
Contributor

Hi Mohammad,

I'm on holiday and do not have my laptop with me, if you can wait until May 8, I will give you the required permissions and everything you need to setup the bot.

@mohammadamer
Copy link
Author

Hi @AhmadiRamin

Have a good holiday. I'll be waiting you to be back :)

@mohammadamer
Copy link
Author

Hi @AhmadiRamin
Hope you had a good holiday and took some rest.
Can you help me make sure that I have all enough configurations for the solution to work.

@AhmadiRamin
Copy link
Contributor

AhmadiRamin commented May 9, 2023
edited
Loading

Hi @mohammadamer, thanks :)

Here are the permissions you need for the app:

  • Calendars.Read
  • Files.Read.All
  • Mail.Read
  • Sites.Read.All
  • User.Read
  • email
  • profile
  • openid
  • offline_access

Also make sure you add the above permissions to the Scopes when creating the SSO connection like this:

User.Read email offline_access openid profile Sites.Read.All Files.Read.All Calendars.Read Mail.Read

Let me know if you need any help.

@mohammadamer
Copy link
Author

Hi @AhmadiRamin,

I'm a bit confused. I see that there is only one place to add the permissions which is the app permissions.
I didn't get this part:

"Also make sure you add the above permissions to the Scopes when creating the SSO connection like this:
User.Read email offline_access openid profile Sites.Read.All Files.Read.All Calendars.Read Mail.Read"

Can you please elaborate more?

@AhmadiRamin
Copy link
Contributor

Hi @mohammadamer

If you follow the steps from this article, the last step is creating the OAuth Connection Settings, and you need to update the scopes here:

sso settings

@mohammadamer
Copy link
Author

Hi @AhmadiRamin,
Okay, will update permissions then test it.
Thanks a lot for helping :)

@mohammadamer
Copy link
Author

Hi @AhmadiRamin,

I updated the app permissions but still have issues when test the bot locally.
I got 400 Bad Request in the ngrok shell windows. Also If I test the bot connection from Azure I got error.

I feel like there is something messing or something is not correct in my app or bot configuration.

{
  "error": {
    "code": "ServiceError",
    "message": "Missing required query string parameter: code. Url = https://token.botframework.com/.auth/web/redirect?error=invalid_client&error_description=AADSTS650053%3a+The+application+%27Graph+Search+API+Bot%27+asked+for+scope+%27AccessAsUser%27+that+doesn%27t+exist+on+the+resource+%2700000003-0000-0000-c000-000000000000%27.+Contact+the+app+vendor.%0d%0aTrace+ID%3a+33002f6d-e03b-4530-9c34-2c0677ac3900%0d%0aCorrelation+ID%3a+815d62df-9b88-4257-991b-945bfc4e1803%0d%0aTimestamp%3a+2023-05-10+15%3a48%3a29Z&state=3e2b029ff2d94254ac77b594e3c2cb7b"
  }
}

@AhmadiRamin
Copy link
Contributor

Hi @mohammadamer

Are you sure you correctly configured the SSO?
can you send some screenshots from "Expose API endpoint" page?

@mohammadamer
Copy link
Author

Hi @AhmadiRamin,
I have sent you screenshots privately to your email.

@mohammadamer
Copy link
Author

mohammadamer commented Jun 6, 2023
edited
Loading

Hi @AhmadiRamin,

Thanks a lot for helping. I would like to share the findings that I have.

Debugging locally

Debugging locally seems to be working however I got this message in "Bot Framework Emulator" which is, I think fine.
image

Debugging in teams

I managed to add the bot manifest to teams but it seems to be not working. Still, something is missing in the manifest file to expose the app.
image

Changes in the bot in teams doesn't trigger the exposed app that is running locally however I added the ngrok url in the validDomains in the maifest file.

   "validDomains": [
        "token.botframework.com",
        "online.microsoftlogin.com",
        "1234-123-12-12-1234.ngrok-free.app"
    ]

@AhmadiRamin, Could you please advice on what could be missing or where might be the issue because I'm able to debug locally but within MS Teams, the code does not get triggered.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@AhmadiRamin @mohammadamer