Authentication flow for Angular application for users in Azure AD

Question

I have an Angular application which talks to several WEB API's to provide an interacted UI. I am finding really hard time in finding a way to. I am following this article which explains the Angular part of it. I am able to get the token at client side. How can my dot net core web API validate the token if the client sends this id token?

In it's document : http://anthonygiretti.com/2018/02/28/using-openidconnect-with-azure-ad-angular5-and-webapi-core-webapi-configuration/ — Nan Yu, Aug 22 '19 at 08:37

score 0 · Answer 1 · answered Aug 23 '19 at 02:08

You can use JwtBearer middleware which enables an application to receive an OpenID Connect bearer token. In this document it provides code sample .

Or you can use AzureADAuthenticationBuilderExtensions.AddAzureADBearer Method in Microsoft.AspNetCore.Authentication.AzureAD.UI library :

services.AddAuthentication(AzureADDefaults.BearerAuthenticationScheme)
            .AddAzureADBearer(options => Configuration.Bind("AzureAd", options));

And bind the config in appsettings.json:

"AzureAd": {
    "Instance": "https://login.microsoftonline.com/",
    "Domain": "xxxxx.onmicrosoft.com",
    "TenantId": "cb1c3f2e-a2dd-xxxx-bf8f-f75ab18b21ac",
    "ClientId": "511ece54-a7a2-xxxx-a9f9-bd224e1d0a0f"
},

Authentication flow for Angular application for users in Azure AD

1 Answers1

Linked