I have an API hosted in Azure APIM with a jwt-policy that validates against Azure AD, boy, that was a mouthful! My jwt-policy is located in the All Operations for my API. I created an app registration for my API. I gave it a more “friendly” Application ID URL and exposed an API in the…
In adding the built-in Authentication support to an Azure App Services, I ran into a challenge where I kept getting a 401 Status Code whenever I called an API endpoint. The first thing after setting up Azure Active Directory as my Identity Provider, I used Postman to call the oauth2 token endpoint to get a…
With Blazor Web Assembly officially released I decided to take one of my side projects and write the front end in Blazor. I was able to wire up Azure AD B2C for authentication. What I wanted to do next was to take a look at the Claims that were available, I knew how to do…
When working with the Azure Portal, sometimes the simple tasks can seem difficult to accomplish. In a recent project I needed to to wire up an Azure Key Vault task to retrieve secrets for a deployment in Azure DevOps. In order for the deployment to be able to retrieve the Azure Key Vault secrets the…
Lately I have been working a lot with Azure AD B2C. One of my most recent requests was to customize the Sign In and Sign Up pages. If my memory was serving me correctly, which is often not the case, I thought this was possible, just didn’t know what challenges or issues I was going…
In a previous article, Adventures with Azure AD: Group Overage Claim, I talked about how to handle, in an ASP.NET MVC Core application, the group overage claim that is sometimes returned in the claims for an authenticated user. I had a customer contact me saying that the code I provided them was not working as…
I have an ASP.NET Core 2.2 Web App. My app authenticates users with OpenIdConnect against Azure Active Directory. I want to use the Security Groups of the authenticated user for role authorization inside my app. To do this, I needed to setup my App Registration in Azure AD to return the Security Groups as claims….
The repository https://github.com/mattruma/SampleAzureADAuthentication has a couple of a sample ASP.NET MVC Core 2.2 applications demonstrating how to authenticate a user against Azure AD and authorize a user based on Security Groups in Azure AD. The first example uses a custom IAuthorizationFilter to look at the groups in principal claims. The second example uses a custom…
I have a React app that I am trying to wire up to Azure AD B2C. I am using James Randall’s library react-azure-adb2c. Wiring it up was a snap, the document was straight-forward on this. When I ran the application I received an UnsupportAuthorityValidation JavaScript error in the console. This is a tracked issue at…
I am trying to get a Bearer token from Azure AD B2C using Postman. I setup my Azure AD B2C tenant as described in Authentication in web APIs with Azure Active Directory B2C in ASP.NET Core. I opened up Postman to test getting a Bearer Token. After I logged in, I would get an invalid_request…
