Reputation: 1339
Azure Active Directory Verify Access Token in Web Api outside of Azure
If my Web Api application is hosted outside Azure, can I use access tokens issued by Azure AD and verify the tokens in the Web Api itself or against Azure AD? All the examples available are referring to the Web Api applications hosted on Azure. But there must be a way to do this with Web Api outside Azure. Any reference to solution would help.
Upvotes: 1
Views: 782
Answers (1)
Reputation: 14649
Azure active directory support the OAuth 2.0 to authorize the third-party apps. It doesn’t matter where the web API or apps hosted. Below figure is the stand OAuth flow from RFC 6749 – The OAuth 2.0 Authorization Framework.
Technically, the web API only need to verity the token from the endpoint it trust. I also explained the detail about verifying the access token from this thread.
And if you want to know more about the scenarios developing with Azure AD, you can also take a look this article.
Upvotes: 2
Related Questions
- ASP.NET Web API - How to acquire access token in Azure AD's token URL
- .Net Core Web API manually validate Azure AD access Token and get user details
- Validating Azure AD ID Token on Web API
- how to validate azure active directory token in webapi
- How to validate a WPF application Azure Token in a Web API in Server machine
- Validate AzureAD token in Web Api
- Azure Active Directory Token
- Authenticating a user in Azure AD through a web api?
- Authentication for web api using azure AD
- Validate access token for WEB API protected by Azure AD