{"id":15410604,"url":"https://github.com/damienbod/microsoftentraidauthmicrosoftidentityweb","last_synced_at":"2025-04-06T12:08:10.053Z","repository":{"id":42489817,"uuid":"298831111","full_name":"damienbod/MicrosoftEntraIDAuthMicrosoftIdentityWeb","owner":"damienbod","description":"Microsoft Entra ID (Azure AD) flows using ASP.NET Core and Microsoft.Identity.Web","archived":false,"fork":false,"pushed_at":"2025-02-07T17:49:38.000Z","size":27505,"stargazers_count":89,"open_issues_count":5,"forks_count":22,"subscribers_count":8,"default_branch":"main","last_synced_at":"2025-03-30T11:06:42.566Z","etag":null,"topics":["aad","aspnet-core","authentication","azure","client-credentials-flow","dotnet","key-vault","microsoft-identity-platform","oauth","oauth2","oidc","x509"],"latest_commit_sha":null,"homepage":"https://damienbod.com/2020/10/01/implement-azure-ad-client-credentials-flow-using-client-certificates-for-service-apis/","language":"CSS","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"mit","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/damienbod.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null}},"created_at":"2020-09-26T14:27:19.000Z","updated_at":"2025-03-08T23:24:35.000Z","dependencies_parsed_at":"2025-01-15T01:17:35.918Z","dependency_job_id":"c7192923-ec8d-45c8-a461-f6da88f6d023","html_url":"https://github.com/damienbod/MicrosoftEntraIDAuthMicrosoftIdentityWeb","commit_stats":{"total_commits":582,"total_committers":2,"mean_commits":291.0,"dds":"0.0034364261168384758","last_synced_commit":"818558d5e1be0ef78c99eb8674a2eeba951b388b"},"previous_names":["damienbod/microsoftentraidauthrazoruiserviceapicertificate"],"tags_count":0,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/damienbod%2FMicrosoftEntraIDAuthMicrosoftIdentityWeb","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/damienbod%2FMicrosoftEntraIDAuthMicrosoftIdentityWeb/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/damienbod%2FMicrosoftEntraIDAuthMicrosoftIdentityWeb/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/damienbod%2FMicrosoftEntraIDAuthMicrosoftIdentityWeb/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/damienbod","download_url":"https://codeload.github.com/damienbod/MicrosoftEntraIDAuthMicrosoftIdentityWeb/tar.gz/refs/heads/main","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":247478321,"owners_count":20945266,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["aad","aspnet-core","authentication","azure","client-credentials-flow","dotnet","key-vault","microsoft-identity-platform","oauth","oauth2","oidc","x509"],"created_at":"2024-10-01T16:45:16.919Z","updated_at":"2025-04-06T12:08:10.033Z","avatar_url":"https://github.com/damienbod.png","language":"CSS","funding_links":[],"categories":[],"sub_categories":[],"readme":"# Microsoft Entra ID (Azure AD) authentication, authorization with ASP.NET Core\r\n\r\n[![.NET](https://github.com/damienbod/AzureADAuthRazorUiServiceApiCertificate/workflows/.NET/badge.svg)](https://github.com/damienbod/AzureADAuthRazorUiServiceApiCertificate/actions?query=workflow%3A.NET) \r\n\r\n# Blogs\r\n\r\n- [Implement Microsoft Entra ID Client credentials flow using Client Certificates for service APIs](https://damienbod.com/2020/10/01/implement-azure-ad-client-credentials-flow-using-client-certificates-for-service-apis/)\r\n- [Using Key Vault certificates with Microsoft.Identity.Web and ASP.NET Core applications](https://damienbod.com/2020/10/09/using-key-vault-certificates-with-microsoft-identity-web-and-asp-net-core-applications/)\r\n- [Using encrypted access tokens in Azure with Microsoft.Identity.Web and Azure App registrations](https://damienbod.com/2020/10/22/using-encrypted-access-tokens-in-azure-with-microsoft-identity-web-and-azure-app-registrations/)\r\n- [Implement a Web APP and an ASP.NET Core Secure API using Microsoft Entra ID which delegates to a second API](https://damienbod.com/2020/11/09/implement-a-web-app-and-an-asp-net-core-secure-api-using-azure-ad-which-delegates-to-second-api/)\r\n- [Using multiple APIs in Angular and ASP.NET Core with Microsoft Entra ID authentication](https://damienbod.com/2020/12/08/using-multiple-apis-in-angular-and-asp-net-core-with-azure-ad-authentication/)\r\n- [Using multiple APIs in Blazor with Microsoft Entra ID authentication](https://damienbod.com/2020/12/14/using-multiple-apis-in-blazor-with-azure-ad-authentication/)\r\n- [Microsoft Entra ID Access Token Lifetime Policy Management in ASP.NET Core](https://damienbod.com/2021/01/05/azure-ad-access-token-lifetime-policy-management-in-asp-net-core/)\r\n- [Implement OAUTH Device Code Flow with Microsoft Entra ID and ASP.NET Core](https://damienbod.com/2021/01/28/implement-oauth-device-code-flow-with-azure-ad-and-asp-net-core/)\r\n- [Implement app roles authorization with Microsoft Entra ID and ASP.NET Core](https://damienbod.com/2021/02/01/implement-app-roles-authorization-with-azure-ad-and-asp-net-core/)\r\n- [Securing Blazor Web assembly using cookies](https://damienbod.com/2021/03/08/securing-blazor-web-assembly-using-cookies/)\r\n- [Implementing authorization in Blazor ASP.NET Core applications using Microsoft Entra ID security groups](https://damienbod.com/2022/02/21/implementing-authorization-in-blazor-asp-net-core-applications-using-azure-ad-security-groups/)\r\n- [Implementing OAuth2 APP to APP security using Microsoft Entra ID from a Web APP](https://damienbod.com/2022/03/28/implementing-oauth2-app-to-app-security-using-azure-ad-from-a-web-app/)\r\n\r\n## History\r\n\r\n- 2025-02-07 Small updates\r\n- 2025-01-03 .NET 9, Bootstrap 5\r\n- 2024-04-11 Updated packages\r\n- 2023-12-01 Updated .NET 8\r\n- 2023-08-14 Updated downstream APIs solution\r\n- 2023-08-14 Updated packages\r\n- 2023-05-05 Updated packages\r\n- 2023-03-12 Updated .NET 7, updated nuget packages, implicit usings\r\n- 2022-10-09 Updated nuget packages\r\n- 2022-08-01 Updated nuget packages\r\n- 2022-04-03 Updated nuget packages, added nullable to projects, added CC flow demo\r\n- 2022-02-19 Updated nuget packages\r\n- 2022-01-07 Updated nuget packages\r\n- 2021-11-04 Updated to .NET 6\r\n- 2021-08-13 Updated Blazor BFF app and fixed login button\r\n- 2021-07-03 Microsoft.Identity.Web to 1.14, Angular OIDC V12\r\n- 2021-06-20 Microsoft.Identity.Web to 1.13.1\r\n- 2021-06-06 Microsoft.Identity.Web to 1.12\r\n- 2021-05-13 Microsoft.Identity.Web to 1.9.2, updated packages\r\n- 2021-04-15 Microsoft.Identity.Web to 1.9.1\r\n- 2021-03-11 Microsoft.Identity.Web to 1.8.0\r\n- 2021-03-05 Microsoft.Identity.Web to 1.7.0\r\n- 2021-02-13 Added MSAL exception handling, Microsoft.Identity.Web to 1.6.0\r\n- 2021-02-01 Added app roles authorization example\r\n- 2021-01-28 Added device code flow, Microsoft.Identity.Web to 1.5.1\r\n- 2021-01-19 Updated nuget, npm packages, moved to latest secrets access for certs in Key Vault\r\n- 2021-01-05 Added token management, updated Microsoft.Identity.Web to 1.4.1\r\n- 2020-12-14 Using multiple APIs in Blazor with Microsoft Entra ID authentication\r\n- 2020-12-12 Updated Microsoft.Identity.Web to 1.4.0\r\n- 2020-12-08 Added Using multiple APIs in Angular and ASP.NET Core with Microsoft Entra ID authentication\r\n- 2020-12-04 Updated to .NET 5\r\n- 2020-11-15 Updated Microsoft.Identity.Web to 1.3.0\r\n- 2020-10-25 Updated Microsoft.Identity.Web to 1.2.0\r\n\r\n## Links Private key JWT Client authentication\r\n\r\nhttps://docs.microsoft.com/en-us/azure/active-directory/develop/v2-oauth2-client-creds-grant-flow#second-case-access-token-request-with-a-certificate\r\n\r\n## Links Microsoft Entra ID Client credentials flow\r\n\r\nhttps://github.com/AzureAD/microsoft-authentication-library-for-dotnet/wiki/Client-credential-flows\r\n\r\nhttps://tools.ietf.org/html/rfc7523\r\n\r\nhttps://openid.net/specs/openid-connect-core-1_0.html#ClientAuthentication\r\n\r\n## Links\r\n\r\nhttps://docs.microsoft.com/en-us/azure/active-directory/develop/access-tokens\r\n\r\nhttps://github.com/AzureAD/microsoft-authentication-library-for-dotnet/wiki/Client-Assertions\r\n\r\nhttps://docs.microsoft.com/en-us/azure/active-directory/develop/v2-oauth2-client-creds-grant-flow\r\n\r\nhttps://github.com/AzureAD/microsoft-identity-web/wiki/Using-certificates#describing-client-certificates-to-use-by-configuration\r\n\r\nhttps://www.youtube.com/watch?v=ACZQk61Iq9I\r\n\r\nhttps://www.scottbrady91.com/OAuth/Removing-Shared-Secrets-for-OAuth-Client-Authentication\r\n\r\nhttps://github.com/KevinDockx/ApiSecurityInDepth\r\n\r\nhttps://github.com/AzureAD/microsoft-authentication-library-for-dotnet/wiki\r\n\r\n## Links Certs\r\n\r\nhttps://docs.microsoft.com/en-us/azure/azure-app-configuration/quickstart-aspnet-core-app?tabs=core3x\r\n\r\nhttps://github.com/a-patel/azure-app-configuration-labs/blob/ce6c57c0d9837dcdff246bab005b321d4897ee71/src/AzureAppConfigurationLabs.Demo/Program.cs\r\n\r\nhttps://devblogs.microsoft.com/azure-sdk/authentication-and-the-azure-sdk/\r\n\r\nhttps://docs.microsoft.com/en-us/azure/active-directory/develop/scenario-protected-web-api-verification-scope-app-roles\r\n\r\nhttps://dev.to/425show/just-what-is-the-default-scope-in-the-microsoft-identity-platform-azure-ad-2o4d\r\n\r\n## Links Azure SDK\r\n\r\n\u003ca href=\"https://devblogs.microsoft.com/azure-sdk/authentication-and-the-azure-sdk/\"\u003eAuthentication and the Azure SDK\u003c/a\u003e\r\n\r\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fdamienbod%2Fmicrosoftentraidauthmicrosoftidentityweb","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fdamienbod%2Fmicrosoftentraidauthmicrosoftidentityweb","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fdamienbod%2Fmicrosoftentraidauthmicrosoftidentityweb/lists"}