All content that has been tagged with the tag AzureAD. To view content from other tags, use the tag cloud in the right-hand sidebar to pick the specified tag.
I’m excited to announce what’s in the latest refresh of my MS-600 exam prep course! New content, over 300 practice test questions and more!
Read MoreIt’s been quite a different year for all of us. Here in the United States, we celebrate Thanksgiving late in November & are usually together with our extended families.
Read MoreIn early September 2017, I announced Voitanos' first course to be published. A little over three years later, I’m excited to share with you today the news on my next course that’s currently in the works!
Read MoreI co-host a podcast, the Microsoft Cloud Show, with my good friend Chris Johnson. We publish new episodes every week and over the last couple months we’ve published few interviews I wanted to call out.
Read MoreDid you miss yesterday’s webinar on Microsoft Identity & Azure AD in my “Get Microsoft 365 Dev Certified!
Read MoreOn Wednesday, April 22, I presented the webinar Get Certified! Overview of the MS-600 exam & Microsoft 365 Developer Associate Certification with Rencore & Waldek Mastykarz.
Read MoreLate last year, Microsoft introduced a new certification for developers working in the Microsoft 365 space.
Read MoreA few weeks ago I posted that I am going to be in Prague in early December for ESPC 2019 speaking on SharePoint Framework development.
Read MoreIn my last post, Securing an Azure Function App with Azure AD - Works with SharePoint Framework!, I showed how you can secure a REST API deployed as an Azure Function App using Azure Active Directory (AzureAD). This comes in quite handy when you want to secure some custom server-side business logic that'’s called from a SharePoint Framework (SPFx) client-side solution. The SPFx docs show how to use APIs with permissions to the Microsoft Graph. This post will explain how to add custom permissions to the AzureAD application that is used to secure your Azure Function.
Read MoreIf you create an application or API that is secured with Azure AD, you are likely going to require a consumer of your application to provide an OAuth access token in order to access your application or API. The caller would have to obtain this token from Azure AD by first authenticating with Azure AD and then request a token for your application. But anyone can create an OAuth access token. It'’s just a JSON object that has a set schema and then base64 encoded. There'’s nothing secure about it.What legitimizes its use as a security token is that the creator of the token digitally signs the token with a public-private key pair. The creator of the token uses their private key and includes the result in the OAuth access token in the JWT (JavaScript Web Token) format. If you'’ve elected to use Azure AD to secure your REST API, you have established a trust with Azure AD.
Read MoreCheck out my online on-demand course:
Mastering the SharePoint Framework!
Check out my podcast!
