microsoft-identity-web
microsoft-identity-web copied to clipboard
Helps creating protected web apps and web APIs with Microsoft identity platform and Azure AD B2C
**Why?** We want clients to call Microsoft Graph with Pop + server nonce etc ... and, really override all the possible authentication options when using the Graph SDK. **What?** Provide...
## Why? ITokenAcquirer can support any token type. There are really 2 token types, which are then organized in the protocols bearer Pop, with 2 flavors: MsAuth1.0ATPop (which Bogdan names...
…quest Paused until this work in MSAL.NET is released: https://github.com/AzureAD/microsoft-authentication-library-for-dotnet/issues/3598 https://github.com/AzureAD/microsoft-authentication-library-for-dotnet/issues/3598 **PR is not complete** - just an example of what we need.
## Why When running inside a container, confidential client applications can use Pod Identity to get a signed assertion in lieu of client credentials. In practice, this is a file...
### Microsoft.Identity.Web Library Microsoft.Identity.Web ### Microsoft.Identity.Web version 1.25.0 ### Web app Sign-in users and call web APIs ### Web API Protected web APIs call downstream web APIs ### Token cache...
## Why? With certificateless coming only on Azure when MSI is available, we need a way to express a priority order to express confidential client application client credentials (and later...
### Microsoft.Identity.Web Library Microsoft.Identity.Web ### Microsoft.Identity.Web version 1.25.0 ### Web app Sign-in users and call web APIs ### Web API Protected web APIs (validating tokens) ### Token cache serialization In-memory...
Addresses #1739 Add optional cancellationToken param to DownstreamWebApi methods and extension methods allowing consumers the possibility to cancel the operations. For now I passed the cancellationToken down to methods supporting...
from @onovotny and copied from https://github.com/Azure-Samples/active-directory-aspnetcore-webapp-openidconnect-v2/issues/240 In the Microsoft.Identity.Web library, the system should automatically clear (`RejectPrincipal()`) the auth cookie if the corresponding account entry is missing from the token cache....