Azure AD posts

Always check permissions in tokens in an Azure AD protected API

Posted on: 05-08-2019

Failing to check for permissions in Azure AD access tokens leads to your API being vulnerable

Why you should not put secrets in native applications

Posted on: 29-05-2019

The dangers of embedding secrets in native applications, and how to implement Azure AD authentication there without secrets

Best practices for N-tenant Azure AD applications

Posted on: 21-05-2019

Some things to watch out for in your multi-tenant Azure AD applications that support a limited number of tenants

Resource Owner Password Credentials grant flow in Azure AD

Posted on: 05-05-2019

What is the OAuth ROPC flow, why it exists, and why you should not use it for most cases

Avoiding wildcard reply URLs with MSAL.js

Posted on: 02-05-2019

Some points on why using wildcards (asterisks) in Azure AD app reply URLs may be a bad idea, and how to do it better

Using groups vs using application roles for authorization in Azure AD apps

Posted on: 21-04-2019

Compares two approaches to high-level authorization in an application: groups and app roles

Implementing Azure AD Single Sign-Out in ASP.NET Core

Posted on: 23-11-2018

Single Sign-Out enables you to clear the user's session immediately when they sign out from another app

Accessing Azure Service Bus with Managed Identities

Posted on: 03-11-2018

Sending and receiving Azure Service Bus Queue messages with zero credentials utilizing Azure Managed Identities

Azure AD Authentication in ASP.NET Core APIs part 2: Custom permissions, multi-tenant APIs

Posted on: 02-08-2018

In the second part we add custom delegated and application permissions to an ASP.NET Core API and also talk about multi-tenancy.

Azure AD Managed Service Identity July 2018 Updates

Posted on: 31-07-2018

We go through new features in Azure AD MSI, e.g. identities which can be shared across services.

Hi! My name is Joonas Westlin, I'm a software developer who blogs about ASP.NET, Azure, and Web development.

Azure MVP, Azure Solutions Architect Expert, Azure Developer Associate, MCSE: Cloud Platform and Infrastructure, MCSD: App Builder.