JWT - Developer Support

Developer Support

Advocacy and Innovation

Unseen secrets – using KeyVault to protect OAuth2 token requests

February 12, 2020 Feb 12, 2020 02/12/20

Developer Support

This sample implements an Azure Function App, which uses Azure KeyVault to sign OAuth2 client assertions used to obtain JWT tokens from Azure AD. The private key used to sign the client assertion and thus authenticate the function to Azure AD is generated in the KeyVault and never leaves that service (it is not exportable).

Workshop Spotlight: Modern Authentication and Authorization

September 20, 2019 Sep 20, 2019 09/20/19

Developer Support

Building applications operating in the internet environment requires understanding of options available for performing authentication and authorization. These options include, both a variety of protocols such as OAuth2 and WS-Federation, as well as tools and toolkits such as Azure AD, AD FS and ADAL.

Feedback