Reputation: 8215
Azure AD JWT Token Validation options
In the Microsoft Azure AD Documentation the JWT Token validation process is described as validating the token signature and then validating its claims.
So, the validation happens entirely on the client side, without asking the Azure AD server whether the token is still valid.
Is there any option for "extended" validation of the token, i.e. by querying for the Azure server, so that the application granting the access to the resource could be sure that the person is still authorized and has an access to that resource.
Upvotes: 4
Views: 2595
Answers (1)
Reputation: 81454
No, access is granted for the lifetime of the token.
Tokens have an expiration date that you can read from the exp claim. You can control the expiration of a token which then requires the user to reauthenticate after expiration.
If you want to do extended validation, you will need to implement that logic.
Configurable token lifetimes in Azure Active Directory
Upvotes: 2
Related Questions
- How do I validate a username and password in Azure AD?
- AzureAD Token Validation
- How can I validate an Azure AD JWT Token in Java?
- Access Token JWT validation
- Azure validating a JWT Token against the Azure B2C active directory
- Error validating Azure AD JWT access token
- Azure Active Directory Token Validation
- Azure AD Jwt token validation no internet
- Windows Azure Active Directory Bearer Authentication
- JWTBearer Token Validation in Azure Apps