Azure AD posts

Testing Azure AD-protected APIs, part 1: Swagger UI

Posted on: 11-11-2019

In the first part in this series, we will look at how to setup Swagger UI so it can be used to test an Azure AD-protected API.

Cross-tenant token attacks are now harder in Azure AD

Posted on: 24-08-2019

Microsoft has improved the security of all APIs using Azure AD authentication and it's awesome, but it doesn't mean you can relax

Always check permissions in tokens in an Azure AD protected API

Posted on: 05-08-2019

Failing to check for permissions in Azure AD access tokens leads to your API being vulnerable

Why you should not put secrets in native applications

Posted on: 29-05-2019

The dangers of embedding secrets in native applications, and how to implement Azure AD authentication there without secrets

Best practices for N-tenant Azure AD applications

Posted on: 21-05-2019

Some things to watch out for in your multi-tenant Azure AD applications that support a limited number of tenants

Resource Owner Password Credentials grant flow in Azure AD

Posted on: 05-05-2019

What is the OAuth ROPC flow, why it exists, and why you should not use it for most cases

Avoiding wildcard reply URLs with MSAL.js

Posted on: 02-05-2019

Some points on why using wildcards (asterisks) in Azure AD app reply URLs may be a bad idea, and how to do it better

Using groups vs using application roles for authorization in Azure AD apps

Posted on: 21-04-2019

Compares two approaches to high-level authorization in an application: groups and app roles

Implementing Azure AD Single Sign-Out in ASP.NET Core

Posted on: 23-11-2018

Single Sign-Out enables you to clear the user's session immediately when they sign out from another app

Accessing Azure Service Bus with Managed Identities

Posted on: 03-11-2018

Sending and receiving Azure Service Bus Queue messages with zero credentials utilizing Azure Managed Identities

Hi! My name is Joonas Westlin, I'm a software developer who blogs about ASP.NET Core, Azure, and Web development.

Azure MVP, Azure Solutions Architect Expert, Azure Developer Associate, MCSE: Cloud Platform and Infrastructure, MCSD: App Builder.