Hi @Rezaal860, given the way that Azure AD scopes and permissions work,
there should be no problem doing a generic check at the product level,
and then either checking the decoded JWT during the API and Operation or
doing another check for the specific claims. Policy fragments will allow
you to set ...
@adrian_hall Great works. Thanks for this new policy. Quick question why
did you guys decide to make client ID and audience, mandatory? What if
somebody wants to check for different attributes at different levels.
For example, at the API level I would like to do something like below
policy and it do...
I have also been working on tools in this space - you can also deploy a
single-node Kubernetes instance with the latest OSS versions from the
Azure Marketplace - see https://kubelift.io I wrote a blog series about
it here: KubeLift getting started (Part 1): Launching KubeLift Solo via
the Azure CLI ...
Latest Comments