{"id":39920,"date":"2020-10-12T06:30:44","date_gmt":"2020-10-12T13:30:44","guid":{"rendered":"https:\/\/devblogs.microsoft.com\/premier-developer\/?p=39920"},"modified":"2020-10-08T06:43:03","modified_gmt":"2020-10-08T13:43:03","slug":"microsoft-identity-platform-which-oauth-flow-should-i-use","status":"publish","type":"post","link":"https:\/\/devblogs.microsoft.com\/premier-developer\/microsoft-identity-platform-which-oauth-flow-should-i-use\/","title":{"rendered":"Microsoft Identity Platform which OAuth flow should I use?"},"content":{"rendered":"<p><a href=\"https:\/\/www.linkedin.com\/in\/nicoladelfino\/\">Nicola Delfino<\/a> takes a look at Microsoft Identity Platform and explores the question, &#8220;which OAuth flow should I use?&#8221;<\/p>\n<hr \/>\n<p><a href=\"https:\/\/docs.microsoft.com\/it-it\/azure\/active-directory\/develop\/v2-protocols-oidc\" target=\"_blank\" rel=\"noopener noreferrer\">OpenID Connect (OIDC)<\/a>\u00a0is an authentication protocol built on OAuth 2.0 that you can use to securely sign in a user to an application. OpenID Connect extends the OAuth 2.0 authorization protocol for use as an authentication protocol, so that you can do single sign-on using OAuth 2.0.<\/p>\n<p>OpenID Connect introduces also the concept of an IdToken (a security token that allows the client to verify the identity of the user) and the UserInfo endpoint, an API that returns information about the user.<\/p>\n<p>The first step of OAuth 2.0 is to get authorization from the user. For browser-based or mobile apps, this is usually accomplished by displaying an interface provided by the service to the user.<\/p>\n<p><a href=\"https:\/\/nicolgit.github.io\/Azure-OpenID-which-oauth-flow-to-use\/\">Continue reading on Nicola&#8217;s blog.<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Microsoft Identity Platform: which OAuth2 flow should I use? My non-prescriptive one-page guide in choosing the right auth flow for every situation.<\/p>\n","protected":false},"author":582,"featured_media":39921,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"footnotes":""},"categories":[96],"tags":[149,289],"class_list":["post-39920","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-security","tag-authentication","tag-oauth2"],"acf":[],"blog_post_summary":"<p>Microsoft Identity Platform: which OAuth2 flow should I use? My non-prescriptive one-page guide in choosing the right auth flow for every situation.<\/p>\n","_links":{"self":[{"href":"https:\/\/devblogs.microsoft.com\/premier-developer\/wp-json\/wp\/v2\/posts\/39920","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/devblogs.microsoft.com\/premier-developer\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/devblogs.microsoft.com\/premier-developer\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/devblogs.microsoft.com\/premier-developer\/wp-json\/wp\/v2\/users\/582"}],"replies":[{"embeddable":true,"href":"https:\/\/devblogs.microsoft.com\/premier-developer\/wp-json\/wp\/v2\/comments?post=39920"}],"version-history":[{"count":0,"href":"https:\/\/devblogs.microsoft.com\/premier-developer\/wp-json\/wp\/v2\/posts\/39920\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/devblogs.microsoft.com\/premier-developer\/wp-json\/wp\/v2\/media\/39921"}],"wp:attachment":[{"href":"https:\/\/devblogs.microsoft.com\/premier-developer\/wp-json\/wp\/v2\/media?parent=39920"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/devblogs.microsoft.com\/premier-developer\/wp-json\/wp\/v2\/categories?post=39920"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/devblogs.microsoft.com\/premier-developer\/wp-json\/wp\/v2\/tags?post=39920"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}