azure key-vault return forbidden when using await keyVaultClient.SignAsync(keyIdentifier...); RRS feed

  • Question

  •  I have a post method. It needs a digital signature on the header of the post request. so I had to create a certificate on azure keyvault. I was given a document to follow by the client, https://www.rahulpnath.com/blog/azure-key-vault-digital-signatures-and-offline-verification.  I have to get my hashed value signed by the certificate in the key vault. that code is available in that link under the heading "Signing Data". when I follow the method it has a function calling the "keyVaultClient.SignAsync(keyIdentifier: "https://cfs-keyvault.vault.azure.net/keys/api-cfs-zipp/e5e577xx4679xxxxxxx0f4de2a", algorithm: JsonWebKeySignatureAlgorithm.RS256, digest: digest);. it throws a forbidden error

    Monday, August 5, 2019 2:44 PM

All replies

  • Hi, 

    The blog looks quite old and that method might not exist anymore. 

    You should try using this method along with this SDK.  

    You have to use a token to show that you have access to the KV. Check the samples listed here for reference. 

    Tuesday, August 6, 2019 11:56 AM
  • Hello,

    Just checking to see if the reply by Manoj was helpful to you. If so, please remember to mark as answer so that others in the community with similar questions can more easily find an answer.

    Please take a moment to "Mark as Answer" and/or "Vote as Helpful" wherever applicable. Thanks!

    Friday, August 30, 2019 10:34 PM