Skip to main content
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Join us for an expert-led overview of the tools and concepts you'll need to become a Certified Power BI Data Analyst and pass exam PL-300. Register now.

Reply
tfanaswala007
New Member

Errors authenticating with a Public Client Application

‎08-15-2024 01:40 PM

Hello all,

 

I'm learning how to use the Power BI REST API. I am using the MSAL library to authenticate my desktop application, and I am using the below function to create a bearer token:

 

def getBearerToken():
    client_id = os.environ.get("CLIENT_ID")
    client_secret = os.environ.get("CLIENT_SECRET")
    tenant_id = os.environ.get("TENANT_ID")
    scope = ['https://analysis.windows.net/powerbi/api/.default']
    authority_url = "https://login.microsoftonline.com/" + tenant_id


    app = msal.PublicClientApplication(client_id, authority=authority_url)
    response = app.acquire_token_interactive(scopes=scope, port=5000)

    return response['access_token']

 

 

I am successfully creating a bearer token after logging in with my account. However, when I try to run a simple API call, I keep getting a 401 error. Below is the API call I am making:

token = getBearerToken()
endpoint = "https://api.powerbi.com/v1.0/myorg/groups"

headers = {"Content-type": "application/json", "Authorization": f"Bearer {token}"}

r = requests.get(endpoint, headers=headers)

print(r.status_code)
print(r.content)

Instead of getting the workspaces I am in, I instead get a 401 error with nothing inside the response body. Any ideas what I need to change in the Azure Portal, or my API calls?

 

Thanks,

Taha

Labels:
Message 1 of 3
475 Views
0
1 ACCEPTED SOLUTION
tfanaswala007
New Member

‎08-21-2024 09:43 AM

I realized that I needed to specify the actual scopes of the application, rather than leaving it at default. Once I did that, everything authenticated as expected.

View solution in original post

Message 3 of 3
317 Views
2 REPLIES 2
tfanaswala007
New Member

‎08-21-2024 09:43 AM

I realized that I needed to specify the actual scopes of the application, rather than leaving it at default. Once I did that, everything authenticated as expected.

Message 3 of 3
318 Views
Anonymous
Not applicable

‎08-15-2024 11:32 PM

Hi, @tfanaswala007 

Regarding the issue you raised, my solution is as follows:

1.First, check the permissions: Make sure you have the correct permissions assigned to the application in the Azure portal. You'll need to give your application permission to Read and write everything in the Power BI service.
 

vlinyulumsft_0-1723789894701.png

 

 

2.Second, you can try to validate the token first: make sure that the token you get contains the correct permissions. You can use tools like JWT.io to decode the token and check the permission claims in it.

 

The following documents are what we hope will help you:

JSON Web Token Introduction - jwt.io
 
Of course, if you have any new ideas, you are welcome to contact us.
 

Best Regards,

Leroy Lu

If this post helps, then please consider Accept it as the solution to help the other members find it more quickly.

Message 2 of 3
424 Views
0

Helpful resources

Announcements
Join our Fabric User Panel

Join our Fabric User Panel

This is your chance to engage directly with the engineering team behind Fabric and Power BI. Share your experiences and shape the future.

June 2025 Power BI Update Carousel

Power BI Monthly Update - June 2025

Check out the June 2025 Power BI update to learn about new features.

June 2025 community update carousel

Fabric Community Update - June 2025

Find out what's new and trending in the Fabric community.

View All