.NET developer blog

Home>
OAuth2

Tag Archives for " OAuth2 "

Building or leveraging an OIDC provider to protect web applications.

Published August 24, 2020 in OAuth2 , OpenID Connect , security

In this post, I write about OpenID and OAuth2 providers, and what can you use to build or leverage them to protect your web applications.

Tags: authorization server , Azure ADB2C , claims based identity , IdentityServer4 , OAuth2 , oidc , OpenID Connect

Implement OAuth2 Client-Credentials flow with Azure AD and Microsoft Identity Platform.

Published December 16, 2019 in ASP.NET core , Azure , Azure Active Directory , OAuth2 , OpenID Connect , security - 5 Comments

OAuth2 Client Credentials flow is a protocol to allow secure communication between two web APIs. Specifically, the protocol specifies the flow of obtaining authorization for a client to access protected endpoints of a resource server with no user interaction involved. With Microsoft Identity Platform, Azure portal, Microsoft Authentication Library (MSAL), and .NET core security middleware, you can implement the OAuth2 client credentials flow without much difficulty. In this post, I go over how to leverage those technologies to protect your ASP.NET core web APIs.

Tags: azure ad , client credentials flow , Microsoft Identity Platform , OAuth2

How can you trust a JWT to be authentic?

Published June 10, 2019 in security

In this post, I am going to share a few things I have learned about JWT token. Specifically, I am going to go over the structure of a JWT and how you can trust the information in the token to be authentic by validating the signature.

Tags: access token , id token , Json Web Token , JWT , Microsoft Identity Platform , OAuth2 , oidc