Video/Blog article of how to have this package running?

[BinariusConsulting]

I am currently stuck at getting 403 error with my Application ID and Secret value. What are the permissions required by the Application before using its appID and secret to get the access Token?

[noticeeverything]

Hey there! If you're authenticating at the application level, I think you'll need these permissions. If you're using user auth, you'll need a refresh token.

[noticeeverything]

I you're using user auth, you should be able to get the required refresh token by following these instructions: https://learn.microsoft.com/en-us/partner-center/developer/secure-sample-application

Secure partner application for CSP and CPV - Partner app developer

Create a secure Partner Center application.

[BinariusConsulting]

Hey Justin, Thank you for the response! I have the permissions set as below in my App registration. Below is my setup for more context. Tenant A - My own Developer tenant which has the App registration with all the required permissions, secret generated and redirect URIs for authentication by code. Tenant B - MSP Tenant that is the CSP Tenant and has access to the the Partner Center. Tenant C,D,E - 3 tenants that are the Customers of the CSP Tenant (ie TenantB) and have GDAP relationships set. All of them can be easily managed via the Partner Center UI. After consenting through the MSP tenant(Tenant B) a service principal for this App is generated in Enterprise apps of the MSP tenant(Tenat B). I add the created service principal to AdminAgents group so that it has access to all the roles provided via the GDAP relationship with the customer tenants. While using your package I initiate the PartnerCenter client with domain of the MSP tenant (Tenant B) + Application ID + Azure Secret for that application. Whatever function I try to run with this client I get 403 error. What am I doing wrong? [image: image.png] 

…

On Fri, Dec 6, 2024 at 4:08 PM Justin McMahon ***@***.***> wrote: I you're using user auth, you should be able to get the required refresh token by following these instructions: https://learn.microsoft.com/en-us/partner-center/developer/secure-sample-application <https://camo.githubusercontent.com/a544566e9646db72f4883e758b0580db7a9e9513bc6db9ab2a1e97198e2db1b8/68747470733a2f2f6c6561726e2e6d6963726f736f66742e636f6d2f656e2d75732f6d656469612f6f70656e2d67726170682d696d6167652e706e67> *Secure partner application for CSP and CPV - Partner app developer <https://learn.microsoft.com/en-us/partner-center/developer/secure-sample-application>* Create a secure Partner Center application. — Reply to this email directly, view it on GitHub <#130 (comment)>, or unsubscribe <https://github.com/notifications/unsubscribe-auth/AVCQSPJOGVA5LX2WAPIIGR32EI37FAVCNFSM6AAAAABTFSNZNCVHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMZDKMRUGY3TQMJXHE> . You are receiving this because you authored the thread.Message ID: ***@***.***>

[noticeeverything]

Have you tried generating a refresh token and then instantiating the MicrosoftPartnerCenter with it?

const mspc = new MicrosoftPartnerCenter({
    partnerDomain: 'myPartnerDomain.onmicrosoft.com',
    authentication: {
        clientId: 'client-id',
        clientSecret: 'client-secret',
        refreshToken: 'refresh-token'
    }
}