Some points on why using wildcards (asterisks) in Azure AD app reply URLs may be a bad idea, and how to do it better
Compares two approaches to high-level authorization in an application: groups and app roles
Single Sign-Out enables you to clear the user's session immediately when they sign out from another app
Sending and receiving Azure Service Bus Queue messages with zero credentials utilizing Azure Managed Identities
In the second part we add custom delegated and application permissions to an ASP.NET Core API and also talk about multi-tenancy.
We go through new features in Azure AD MSI, e.g. identities which can be shared across services.
This first part looks at the basic setup for Azure AD authentication in an ASP.NET Core API as well as creating a test client app
Getting rid of access keys and instead using Azure AD with Managed Service Identity to access Azure Storage
Walkthrough on configuring API access for Azure App Service using Azure AD MSI.
Opt-in features can be a bit hard to implement with Azure AD. Here we look at an example of doing that for an optional calendar integration.