.NET developer blog

Migrating from Microsoft.AspNetCore.Authentication.AzureAD to Microsoft Identity Web authentication library to integrate with Azure AD.

Published September 6, 2021 in .NET core , ASP.NET core , Azure , Azure Active Directory , Azure ADB2C , OAuth2 , OpenID Connect , security

I recently had a chance to clean up some of the deprecated libraries I used for validating a JWT access token or obtain one via the client-credentials flow or the on-behalf-of flow. The libraries I used were under the Microsoft.AspNetCore.Authentication.AzureAD packages. Per the document, since ASP.NET core 5.0, users should use the Microsoft.Identity.Web package to integrate with Azure AD and Azure ADB2C.

Tags: azure ad , bearer token , client credentials , JWT , Microsoft Identity Platform , microsoft identity web , on behalf of

How can you trust a JWT to be authentic?

Published June 10, 2019 in security

In this post, I am going to share a few things I have learned about JWT token. Specifically, I am going to go over the structure of a JWT and how you can trust the information in the token to be authentic by validating the signature.

Tags: access token , id token , Json Web Token , JWT , Microsoft Identity Platform , OAuth2 , oidc

Tag Archives for " JWT "

Migrating from Microsoft.AspNetCore.Authentication.AzureAD to Microsoft Identity Web authentication library to integrate with Azure AD.

How can you trust a JWT to be authentic?