Developer Support

Services for Microsoft Premier and Unified Support Customers

Marius Rochon - Developer Support

To B2B or to B2C?

March 25, 2021 Mar 25, 2021 03/25/21
Developer Support
While one uses B to signify it’s focus on business partnerships, while the other uses C for consumers, at the end of the day either can be used to accomplish roughly the same access. My intent here is to focus on what I see as the fundamental difference; one that is most likely to drive the appropriate choice of technology.

Setting up for Azure B2C development

January 11, 2021 Jan 11, 2021 01/11/21
Developer Support
The following describes some techniques, tools and approaches I found useful when developing applications with Azure AD B2C. The first part deals with setting up a newly created B2C tenant using the Azure portal only. The second part deals with developing custom journeys (Identity Experience Framework) xml policies.

Using B2C to support multi-tenant SaaS apps

February 17, 2020 Feb 17, 2020 02/17/20
Developer Support
AAD multi-tenancy is ideal for medium-to-large enterprises who own and manage their own identity infrastructure. This sample is for small enterprises, usually without their own identity infrastructure. It provides support for an application that needs to group it's users into discrete groups, each representing an application tenant.

Unseen secrets – using KeyVault to protect OAuth2 token requests

February 12, 2020 Feb 12, 2020 02/12/20
Developer Support
This sample implements an Azure Function App, which uses Azure KeyVault to sign OAuth2 client assertions used to obtain JWT tokens from Azure AD. The private key used to sign the client assertion and thus authenticate the function to Azure AD is generated in the KeyVault and never leaves that service (it is not exportable).

Choosing the OAuth2 grant flow

June 17, 2019 Jun 17, 2019 06/17/19
Developer Support
Premier Dev Consultant Marius Rochon explores OAuth2 questions you need to ask and how the answers lead to the selection of the grant. The OAuth2 specifications define six different grant types (https://tools.ietf.org/html/rfc6749 and https://tools.ietf.org/html/draft-ietf-oauth-device-flow-15). Each provides the most optimal (from the ...

Multi-Tenant Applications and Azure AD

May 7, 2018 May 7, 2018 05/7/18
Developer Support
Following up on a previous blog post, Premier Developer Consultant Marius Rochon describes recent changes and compares the use of Azure AD multi-tenant features with the custom features in B2C.Read Marius’s first post here.Since then, there have been some changes to the demo application regarding new modes and new features. In his follow-up ...

Developing an Azure AD B2C multi-tenant application

October 9, 2017 Oct 9, 2017 10/9/17
Pam Lahoud
In this post from his blog, Premier Developer consultant Marius Rochon provides a demo application that illustrates how to use Azure Active Directory B2C for authentication in a multi-tenant application.The 'regular' Azure AD has build-in support for multi-tenant applications. In that case, a user from any Azure AD tenant can sign in to an ...

Claims augmentation with OWIN but outside of Startup code

August 16, 2017 Aug 16, 2017 08/16/17
Pam Lahoud
This post on authentication and authorization is from Premier Developer consultant Marius Rochon.Claims list included in the ClaimsPrincipal usually originate from the security token received by the application as part of user authentication (SAML, OpenIDConnect id token) or access authorization (OAuth2 bearer access token).  However, ...