aad-sso-wordpress icon indicating copy to clipboard operation
aad-sso-wordpress copied to clipboard

Published 20 hours ago verified publisher icon psignoret

Adding ability to authenticate rest calls with bearer token

Open sicurezza opened this issue 8 years ago • 3 comments

sicurezza avatar Sep 22 '16 14:09 sicurezza

Hi, I edited files according to your questions.

regarding the resource id and client id they are different.

When an application requests azureAD a token to authenticate with a second application (in our case our application request a token to authenticate with wordpress) then it uses the resource id to identify the resource. This information is stored in AUD field of the token and the receiving application has to verify that the token it receives is for itself.

sicurezza avatar Nov 04 '16 16:11 sicurezza

Is this so that AD bearer tokens can be used through the WP REST API?

bradkovach avatar Nov 08 '16 18:11 bradkovach

yes

sicurezza avatar Nov 09 '16 11:11 sicurezza