Showing results for OAuth2 - Developer Support

Jun 29, 2022
1
0

Azure AD OAuth client credential flow with custom certificate walk-through

Developer Support
Developer Support

Nicola Delfino demonstrates how to use a certificate to request an access token to Azure Active Directory, using the OAuth 2.0 client credential flow You can use the OAuth 2.0 client credentials grant specified in RFC 6749, to access web-hosted resources by using the identity of an application. This type of grant is commonly used for server-...

OAuth2AADOAuth
Jul 23, 2020
0
1

Using OAuth2 OBO with Azure AD B2C

Developer Support
Developer Support

This sample uses a custom web service (B2BOBOWeb) to provide a token endpoint, which handles the Extension Grant requests and communicates with B2C to respond with a valid response (access token). It uses a specific B2C tenant configured with custom journeys to handle this communication.

Azure ADOAuth2B2C
Sep 20, 2019
0
0

Workshop Spotlight: Modern Authentication and Authorization

Developer Support
Developer Support

Building applications operating in the internet environment requires understanding of options available for performing authentication and authorization. These options include, both a variety of protocols such as OAuth2 and WS-Federation, as well as tools and toolkits such as Azure AD, AD FS and ADAL.

TeamAzureOAuth2
Jun 17, 2019
0
0

Choosing the OAuth2 grant flow

Developer Support
Developer Support

Premier Dev Consultant Marius Rochon explores OAuth2 questions you need to ask and how the answers lead to the selection of the grant. The OAuth2 specifications define six different grant types (https://tools.ietf.org/html/rfc6749 and https://tools.ietf.org/html/draft-ietf-oauth-device-flow-15). Each provides the most optimal (from the secur...

TeamAuthenticationMarius Rochon
Mar 5, 2019
0
0

Azure BOTs – getting extra access tokens

Developer Support
Developer Support

In this post, Premier Dev Consultant Marius Rochon show us how to obtain extra access tokens using OAuth2 Extension flow (on-behalf-of flow). The following describes an approach for getting access tokens to more than one resource, without re-displaying the sign in dialog (using the V2 Azure AD endpoint). In a nutshell, the procedure uses...

TeamAzure ADBots
Apr 8, 2016
0
0

Passive is good!

Pam Lahoud
Pam Lahoud

Here’s a quick read from Premier Developer consultant Marius Rochon’s blog.  In it, Marius gives some great reasons to leverage passive authentication protocols in your applications rather than writing your own code to handle credentials. Some time back I wrote about avoiding handling of credentials (creation/maintenance/verification of us...

SecurityAuthenticationMarius Rochon