Using Graph API in a SAML flow.

[linoman]

With a user that belongs to more than 200 groups, a groups link is being returned with the SAML claims. However, that URL is only useful for authentication with OAuth since it requires a JWT.

https://learn.microsoft.com/en-us/entra/identity-platform/scenario-token-exchange-saml-oauth

This part of the documentation claims it is possible to set up stacked applications with OAuth and SAML, but I found it vague and unclear.

Is it possible to find an example with these scenarios?

---

Document Details

⚠ Do not edit this section. It is required for learn.microsoft.com ➟ GitHub issue linking.

• ID: 0426f50b-e03b-4e77-4a8a-390b0ae08c62
• Version Independent ID: 0039b994-8481-1214-b42a-c2113b07fafc
• Content: Microsoft identity platform token exchange scenario with SAML and OIDC/OAuth in Microsoft Entra ID - Microsoft identity platform
• Content Source: docs/identity-platform/scenario-token-exchange-saml-oauth.md
• Service: identity-platform
• GitHub Login: @OwenRichards1
• Microsoft Alias: owenrichards

[TPavanBalaji]

@linoman
Thanks for your feedback! We will investigate and update as appropriate.

[ManoharLakkoju-MSFT]

@linoman
Thank you for bringing this to our attention.
I've delegated this to content author @OwenRichards1, who will review it and offer their insightful opinions.