Call Summary:
This month’s in-depth topic: Increase the resilience of authentication and authorization applications you develop. Tips for adding and increasing resiliency in apps that sign-in users and apps without users. Using a Microsoft Authentication Library and best practices to follow if you use a different library. Authorization with JWT and using Microsoft Continuous Access Evaluation (CAE). Demo and tips on evaluating/adopting CAE. Resilient methods for fetching metadata and validating tokens including use of customized token validation, as needed. This session was delivered by Microsoft Program Managers Harish Suresh | @harish_suresh and Kyle Marsh | @kylemar and was recorded on June 17, 2021. Live and in chat Q&A throughout call
Resources:
Documentation - Increase resilience of authentication and authorization applications you develop
Documentation - How to use Continuous Access Evaluation enabled APIs in your applications
Documentation - Building resilience into identity and access management with Azure Active Directory
Organization – OpenID - Continuous Access Evaluation Protocol (CAEP)
NuGet Gallery - Microsoft.IdentityModel 7.0.0
Documentation - Signing key rollover in the Microsoft identity platform
Documentation - How to: Build services that are resilient to Azure AD's OpenID Connect metadata refresh
Documentation – Microsoft identity platform access tokens
Documentation - Microsoft identity platform access tokens - Validating tokens
Documentation - Protected web API: Code configuration - Customizing token validation
Actions:
Let us know how we’re doing and suggest topics for future calls, please complete this survey https://aka.ms/IDDevCommunityCallSurvey
Stay connected:
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.