Update Management/Security/ClientAuthMiddleware.cs

2026-03-22 07:05:59 -07:00
parent 04e2bb40e8
commit 37b08ef012
1 changed files with 5 additions and 1 deletions
--- a/Management/Security/ClientAuthMiddleware.cs
+++ b/Management/Security/ClientAuthMiddleware.cs
@@ -277,7 +277,11 @@ public sealed class ClientAuthMiddleware
            var validationParams = new TokenValidationParameters
            {
                ValidateIssuer    = true,
-                ValidIssuers      = new[] { $"{instance.TrimEnd('/')}/{tenantId}/v2.0" },
+                ValidIssuers      = new[]
+                {
+                    $"https://login.microsoftonline.com/{tenantId}/v2.0",
+                    $"https://sts.windows.net/{tenantId}/"
+                },
                ValidateAudience  = true,
                ValidAudiences    = new[] { clientId, $"api://{clientId}" },
                ValidateLifetime  = true,