Call Summary:
This month’s in-depth topic: Increase the resilience of authentication and authorization applications you develop. Tips for adding and increasing resiliency in apps that sign-in users and apps without users. Using a Microsoft Authentication Library and best practices to follow if you use a different library. Authorization with JWT and using Microsoft Continuous Access Evaluation (CAE). Demo and tips on evaluating/adopting CAE. Resilient methods for fetching metadata and validating tokens including use of customized token validation, as needed. This session was delivered by Microsoft Program Managers Harish Suresh | @harish_suresh and Kyle Marsh | @kylemar and was recorded on June 17, 2021. Live and in chat Q&A throughout call
Resources:
-
Documentation - Increase resilience of authentication and authorization applications you develop
-
Documentation - How to use Continuous Access Evaluation enabled APIs in your applications
-
Documentation - Building resilience into identity and access management with Azure Active Directory
-
Organization – OpenID - Continuous Access Evaluation Protocol (CAEP)
-
NuGet Gallery - Microsoft.IdentityModel 7.0.0
-
Documentation - Signing key rollover in the Microsoft identity platform
-
Documentation - How to: Build services that are resilient to Azure AD's OpenID Connect metadata refresh
-
Documentation – Microsoft identity platform access tokens
-
Documentation - Microsoft identity platform access tokens - Validating tokens
-
Documentation - Protected web API: Code configuration - Customizing token validation
Actions:
-
Let us know how we’re doing and suggest topics for future calls, please complete this survey https://aka.ms/IDDevCommunityCallSurvey
- Mark your calendar. The next Identity Platform Community Call is on July 15th
Stay connected:
- Twitter https://twitter.com/microsoft365dev and @azuread
- YouTube https://aka.ms/M365DevYouTube
- Blog https://aka.ms/m365pnp/community/blog
- Recurrent Invite https://aka.ms/IDDevCommunityCalendar