Microsoft Identity Platform community call – June 2021

Published Jun 25 2021 05:14 AM 713 Views
Senior Member

IDArchitecture.png

 

Call Summary:  

This month’s in-depth topic:  Increase the resilience of authentication and authorization applications you develop.   Tips for adding and increasing resiliency in apps that sign-in users and apps without users.  Using a Microsoft Authentication Library and best practices to follow if you use a different library.  Authorization with JWT and using Microsoft Continuous Access Evaluation (CAE).  Demo and tips on evaluating/adopting CAE.   Resilient methods for fetching metadata and validating tokens including use of customized token validation, as needed.   This session was delivered by Microsoft Program Managers Harish Suresh | @harish_suresh and Kyle Marsh | @kylemar and was recorded on June 17, 2021.  Live and in chat Q&A throughout call

 

 

Resources:

 

 

Actions:  

  • Let us know how we’re doing and suggest topics for future calls, please complete this survey https://aka.ms/IDDevCommunityCallSurvey

  • Mark your calendar.  The next Identity Platform Community Call is on July 15th

 

Stay connected:

%3CLINGO-SUB%20id%3D%22lingo-sub-2463951%22%20slang%3D%22en-US%22%3EMicrosoft%20Identity%20Platform%20community%20call%20%E2%80%93%20June%202021%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-2463951%22%20slang%3D%22en-US%22%3E%3CP%3E%3CSPAN%20class%3D%22lia-inline-image-display-wrapper%20lia-image-align-center%22%20image-alt%3D%22IDArchitecture.png%22%20style%3D%22width%3A%20995px%3B%22%3E%3CIMG%20src%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fimage%2Fserverpage%2Fimage-id%2F289988iB9F2AABFCD168D23%2Fimage-size%2Flarge%3Fv%3Dv2%26amp%3Bpx%3D999%22%20role%3D%22button%22%20title%3D%22IDArchitecture.png%22%20alt%3D%22IDArchitecture.png%22%20%2F%3E%3C%2FSPAN%3E%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3E%3CSTRONG%3ECall%20Summary%3A%26nbsp%3B%26nbsp%3B%3C%2FSTRONG%3E%3C%2FP%3E%0A%3CP%3E%3CSPAN%3EThis%20month%E2%80%99s%20in-depth%20topic%3A%26nbsp%3B%20%3C%2FSPAN%3E%3CSTRONG%3EIncrease%20the%20resilience%20of%20authentication%20and%20authorization%20applications%20you%20develop%3C%2FSTRONG%3E%3CSPAN%3E.%26nbsp%3B%26nbsp%3B%20Tips%20for%20adding%20and%20increasing%20resiliency%20in%20apps%20that%20sign-in%20users%20and%20apps%20without%20users.%26nbsp%3B%26nbsp%3BUsing%20a%20Microsoft%20Authentication%20Library%20and%20best%20practices%20to%20follow%20if%20you%20use%20a%20different%20library.%20%26nbsp%3BAuthorization%20with%20JWT%20and%20using%20Microsoft%20Continuous%20Access%20Evaluation%20(CAE).%26nbsp%3B%20Demo%20and%20tips%20on%20evaluating%2Fadopting%20CAE.%26nbsp%3B%26nbsp%3B%20Resilient%20methods%20for%20fetching%20metadata%20and%20validating%20tokens%20including%20use%20of%20customized%20token%20validation%2C%20as%20needed.%26nbsp%3B%26nbsp%3B%20%3C%2FSPAN%3EThis%20session%20was%20delivered%20by%20Microsoft%20Program%20Managers%20%3CA%20href%3D%22http%3A%2F%2Ftwitter.com%2Fharish_suresh%22%20target%3D%22_self%22%20rel%3D%22nofollow%20noopener%20noreferrer%22%3EHarish%20Suresh%3C%2FA%3E%20%7C%20%40harish_suresh%20and%20%3CA%20href%3D%22http%3A%2F%2Ftwitter.com%2Fkylemar%22%20target%3D%22_self%22%20rel%3D%22nofollow%20noopener%20noreferrer%22%3EKyle%20Marsh%3C%2FA%3E%20%7C%20%40kylemar%20and%20was%20recorded%20on%20June%2017%2C%202021.%26nbsp%3B%20Live%20and%20in%20chat%20Q%26amp%3BA%20throughout%20call%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3E%3C%2FP%3E%3CDIV%20class%3D%22video-embed-center%20video-embed%22%3E%3CIFRAME%20class%3D%22embedly-embed%22%20src%3D%22https%3A%2F%2Fcdn.embedly.com%2Fwidgets%2Fmedia.html%3Fsrc%3Dhttps%253A%252F%252Fwww.youtube.com%252Fembed%252FZodU3olKuus%253Ffeature%253Doembed%26amp%3Bdisplay_name%3DYouTube%26amp%3Burl%3Dhttps%253A%252F%252Fwww.youtube.com%252Fwatch%253Fv%253DZodU3olKuus%26amp%3Bimage%3Dhttps%253A%252F%252Fi.ytimg.com%252Fvi%252FZodU3olKuus%252Fhqdefault.jpg%26amp%3Bkey%3Db0d40caa4f094c68be7c29880b16f56e%26amp%3Btype%3Dtext%252Fhtml%26amp%3Bschema%3Dyoutube%22%20width%3D%22600%22%20height%3D%22337%22%20scrolling%3D%22no%22%20title%3D%22YouTube%20embed%22%20frameborder%3D%220%22%20allow%3D%22autoplay%3B%20fullscreen%22%20allowfullscreen%3D%22true%22%3E%3C%2FIFRAME%3E%3C%2FDIV%3E%3CP%3E%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3E%3CSPAN%3E%3CSTRONG%3EResources%3A%3C%2FSTRONG%3E%3C%2FSPAN%3E%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CUL%3E%0A%3CLI%3E%3CP%3EDocumentation%20-%20%3CA%20href%3D%22https%3A%2F%2Fdocs.microsoft.com%2Fen-us%2Fazure%2Factive-directory%2Ffundamentals%2Fresilience-app-development-overview%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%22%3EIncrease%20resilience%20of%20authentication%20and%20authorization%20applications%20you%20develop%3C%2FA%3E%26nbsp%3B%3C%2FP%3E%0A%3C%2FLI%3E%0A%3CLI%3E%3CP%3EDocumentation%20-%20%3CA%20href%3D%22https%3A%2F%2Fdocs.microsoft.com%2Fen-us%2Fazure%2Factive-directory%2Fdevelop%2Fapp-resilience-continuous-access-evaluation%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%22%3EHow%20to%20use%20Continuous%20Access%20Evaluation%20enabled%20APIs%20in%20your%20applications%3C%2FA%3E%26nbsp%3B%3C%2FP%3E%0A%3C%2FLI%3E%0A%3CLI%3E%3CP%3EDocumentation%20-%20%3CA%20href%3D%22https%3A%2F%2Fdocs.microsoft.com%2Fen-us%2Fazure%2Factive-directory%2Ffundamentals%2Fresilience-overview%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%22%3EBuilding%20resilience%20into%20identity%20and%20access%20management%20with%20Azure%20Active%20Directory%3C%2FA%3E%26nbsp%3B%3C%2FP%3E%0A%3C%2FLI%3E%0A%3CLI%3E%3CP%3E%3CSPAN%3EOrganization%20%E2%80%93%20%3C%2FSPAN%3E%3CA%20href%3D%22https%3A%2F%2Fopenid.net%2Fwg%2Fsse%2F%22%20target%3D%22_blank%22%20rel%3D%22noopener%20nofollow%20noreferrer%22%3EOpenID%20-%20Continuous%20Access%20Evaluation%20Protocol%20(CAEP)%3C%2FA%3E%3CSPAN%3E%26nbsp%3B%3C%2FSPAN%3E%3C%2FP%3E%0A%3C%2FLI%3E%0A%3CLI%3E%3CP%3E%3CSPAN%3ENuGet%20Gallery%20-%20%3CA%20href%3D%22https%3A%2F%2Fwww.nuget.org%2Fpackages%2FMicrosoft.IdentityModel%2F%22%20target%3D%22_blank%22%20rel%3D%22noopener%20nofollow%20noreferrer%22%3EMicrosoft.IdentityModel%207.0.0%3C%2FA%3E%26nbsp%3B%3C%2FSPAN%3E%3C%2FP%3E%0A%3C%2FLI%3E%0A%3CLI%3E%3CP%3E%3CSPAN%3EDocumentation%20-%20%3CA%20href%3D%22https%3A%2F%2Fdocs.microsoft.com%2Fen-us%2Fazure%2Factive-directory%2Fdevelop%2Factive-directory-signing-key-rollover%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%22%3ESigning%20key%20rollover%20in%20the%20Microsoft%20identity%20platform%3C%2FA%3E%26nbsp%3B%3C%2FSPAN%3E%3C%2FP%3E%0A%3C%2FLI%3E%0A%3CLI%3E%3CP%3E%3CSPAN%3EDocumentation%20-%20%3CA%20href%3D%22https%3A%2F%2Fdocs.microsoft.com%2Fen-us%2Fazure%2Factive-directory%2Fdevelop%2Fhowto-build-services-resilient-to-metadata-refresh%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%22%3EHow%20to%3A%20Build%20services%20that%20are%20resilient%20to%20Azure%20AD's%20OpenID%20Connect%20metadata%20refresh%3C%2FA%3E%26nbsp%3B%3C%2FSPAN%3E%3C%2FP%3E%0A%3C%2FLI%3E%0A%3CLI%3E%3CP%3E%3CSPAN%3EDocumentation%20%E2%80%93%20%3C%2FSPAN%3E%3CA%20href%3D%22https%3A%2F%2Fdocs.microsoft.com%2Fazure%2Factive-directory%2Fdevelop%2Fv2-id-and-access-tokens%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%22%3EMicrosoft%20identity%20platform%20access%20tokens%3C%2FA%3E%3CSPAN%3E%26nbsp%3B%3C%2FSPAN%3E%3C%2FP%3E%0A%3C%2FLI%3E%0A%3CLI%3E%3CP%3E%3CSPAN%3EDocumentation%20-%20%3CA%20href%3D%22https%3A%2F%2Fdocs.microsoft.com%2Fen-us%2Fazure%2Factive-directory%2Fdevelop%2Faccess-tokens%23validating-tokens%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%22%3EMicrosoft%20identity%20platform%20access%20tokens%20-%20Validating%20tokens%3C%2FA%3E%26nbsp%3B%3C%2FSPAN%3E%3C%2FP%3E%0A%3C%2FLI%3E%0A%3CLI%3E%3CP%3ESample%20-%20%3CA%20style%3D%22background-color%3A%20%23ffffff%3B%22%20href%3D%22https%3A%2F%2Fgithub.com%2FAzure-Samples%2Factive-directory-dotnet-webapi-manual-jwt-validation%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%22%3EHow%20to%20manually%20validate%20a%20JWT%20access%20token%20using%20the%20Microsoft%20identity%20platform%20(formerly%20Azure%20Active%20Directory%20for%20developers)%3C%2FA%3E%26nbsp%3B%3C%2FP%3E%0A%3C%2FLI%3E%0A%3CLI%3E%3CP%3E%3CSPAN%3EDocumentation%20-%20%3CA%20href%3D%22https%3A%2F%2Fdocs.microsoft.com%2Fen-us%2Fazure%2Factive-directory%2Fdevelop%2Fscenario-protected-web-api-app-configuration%23customizing-token-validation%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%22%3EProtected%20web%20API%3A%20Code%20configuration%20-%20Customizing%20token%20validation%3C%2FA%3E%26nbsp%3B%3C%2FSPAN%3E%26nbsp%3B%3C%2FP%3E%0A%3C%2FLI%3E%0A%3C%2FUL%3E%0A%3CP%3E%3CSPAN%3E%3CSTRONG%3E%26nbsp%3B%3C%2FSTRONG%3E%3C%2FSPAN%3E%3C%2FP%3E%0A%3CP%3E%3CSPAN%3E%3CSTRONG%3EActions%3A%26nbsp%3B%26nbsp%3B%3C%2FSTRONG%3E%3C%2FSPAN%3E%3C%2FP%3E%0A%3CUL%3E%0A%3CLI%3E%3CP%3ELet%20us%20know%20how%20we%E2%80%99re%20doing%20and%20suggest%20topics%20for%20future%20calls%2C%20please%20complete%20this%20survey%20%3CA%20href%3D%22https%3A%2F%2Faka.ms%2FIDDevCommunityCallSurvey%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%22%3Ehttps%3A%2F%2Faka.ms%2FIDDevCommunityCallSurvey%3C%2FA%3E%3C%2FP%3E%0A%3C%2FLI%3E%0A%3CLI%3EMark%20your%20calendar.%26nbsp%3B%20The%20next%20Identity%20Platform%20Community%20Call%20is%20on%20July%2015th%3C%2FLI%3E%0A%3C%2FUL%3E%0A%3CP%3E%3CSPAN%3E%3CSTRONG%3E%26nbsp%3B%3C%2FSTRONG%3E%3C%2FSPAN%3E%3C%2FP%3E%0A%3CP%3E%3CSPAN%3E%3CSTRONG%3EStay%20connected%3A%3C%2FSTRONG%3E%3C%2FSPAN%3E%3C%2FP%3E%0A%3CUL%3E%0A%3CLI%3E%3CSPAN%3ETwitter%26nbsp%3B%3C%2FSPAN%3E%3CA%20href%3D%22https%3A%2F%2Fwww.youtube.com%2Fredirect%3Fevent%3Dvideo_description%26amp%3Bredir_token%3DQUFFLUhqbkdvcDJHcGdzM2VIUkwzU3lOYkJaVFEzM0Q2QXxBQ3Jtc0ttM1NyaTQ2RjFSOFh3a0l4c1pralBRQVI1bDNSQ2RaVm9OdzJrRkdtV1Z1SW5VdmdwamNNLTBEaFdaSmZMc0lQNzdRZ2dDYV9WZVF1ZVIwc2dPQTZBRUZ3b3hoWUVJdDJoQWZUcWdCR2JKdmwtUU43RQ%26amp%3Bq%3Dhttps%253A%252F%252Ftwitter.com%252Fmicrosoft365dev%22%20target%3D%22_blank%22%20rel%3D%22noopener%20nofollow%20noreferrer%22%3Ehttps%3A%2F%2Ftwitter.com%2Fmicrosoft365dev%3C%2FA%3E%3CSPAN%3E%20and%26nbsp%3B%3C%2FSPAN%3E%40azuread%3C%2FLI%3E%0A%3CLI%3E%3CSPAN%3EYouTube%26nbsp%3B%3C%2FSPAN%3E%3CA%20href%3D%22https%3A%2F%2Fwww.youtube.com%2Fredirect%3Fevent%3Dvideo_description%26amp%3Bredir_token%3DQUFFLUhqa3RzWmpNU2VPRmh6dXBad3hKMmxySjBaQVl6Z3xBQ3Jtc0trVjYyeXZlSXZiX0JydHlyeHdqcTRSUnczX2xrVDloOWhzeGVCYXFibjBiM1VpXzFOd2dZX2dJdlNYQWYtekcyWXZOTHp3VkdoU2JsdmNVQ3dtdkw2ZHF0cVdCS29TQmJ1Z3hoVmJyd3JtYlFxUW92WQ%26amp%3Bq%3Dhttps%253A%252F%252Faka.ms%252FM365DevYouTube%22%20target%3D%22_blank%22%20rel%3D%22noopener%20nofollow%20noreferrer%22%3Ehttps%3A%2F%2Faka.ms%2FM365DevYouTube%3C%2FA%3E%3CSPAN%3E%20%3C%2FSPAN%3E%3C%2FLI%3E%0A%3CLI%3E%3CSPAN%3EBlog%3C%2FSPAN%3E%3CSPAN%3E%26nbsp%3B%3C%2FSPAN%3E%3CA%20href%3D%22https%3A%2F%2Faka.ms%2Fm365pnp%2Fcommunity%2Fblog%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%22%3Ehttps%3A%2F%2Faka.ms%2Fm365pnp%2Fcommunity%2Fblog%3C%2FA%3E%3C%2FLI%3E%0A%3CLI%3ERecurrent%20Invite%26nbsp%3B%3CSPAN%3E%26nbsp%3B%3C%2FSPAN%3E%3CA%20href%3D%22https%3A%2F%2Faka.ms%2FIDDevCommunityCalendar%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%22%3Ehttps%3A%2F%2Faka.ms%2FIDDevCommunityCalendar%3C%2FA%3E%26nbsp%3B%3C%2FLI%3E%0A%3C%2FUL%3E%3C%2FLINGO-BODY%3E%3CLINGO-TEASER%20id%3D%22lingo-teaser-2463951%22%20slang%3D%22en-US%22%3E%3CP%3EMicrosoft%20Identity%20uses%20modern%2C%20token-based%20authentication%20and%20authorization.%20Here%20we%20share%20best%20practices%20around%20using%20a%20Microsoft%20Authentication%20Library%2C%20Continuous%20Access%20Evaluation%20(CAE)%20and%20token%20validation%20you%20may%20adopt%20to%20increase%20the%20resilience%20of%20authentication%20and%20authorization%20in%20applications%20you%20develop%3CSPAN%3E.%3C%2FSPAN%3E%3C%2FP%3E%3C%2FLINGO-TEASER%3E%3CLINGO-LABS%20id%3D%22lingo-labs-2463951%22%20slang%3D%22en-US%22%3E%3CLINGO-LABEL%3ECommunity%20call%3C%2FLINGO-LABEL%3E%3C%2FLINGO-LABS%3E
Co-Authors
Version history
Last update:
‎Jun 18 2021 10:32 AM
Updated by: