{"id":15410712,"url":"https://github.com/damienbod/microsoftentraidmultiapis","last_synced_at":"2025-04-19T09:46:48.181Z","repository":{"id":66359386,"uuid":"591279658","full_name":"damienbod/MicrosoftEntraIDMultiApis","owner":"damienbod","description":"Microsoft Entra ID multi tenant API consent and authorization","archived":false,"fork":false,"pushed_at":"2024-10-30T21:02:43.000Z","size":1811,"stargazers_count":5,"open_issues_count":0,"forks_count":0,"subscribers_count":2,"default_branch":"main","last_synced_at":"2024-11-01T13:42:11.471Z","etag":null,"topics":["aad","aspnetcore","authorization","authz","azuread","consent","dotnet"],"latest_commit_sha":null,"homepage":"https://damienbod.com/2023/01/30/using-multi-tenant-aad-delegated-apis-from-different-tenants/","language":"C#","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"mit","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/damienbod.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null}},"created_at":"2023-01-20T11:19:16.000Z","updated_at":"2024-10-30T21:02:47.000Z","dependencies_parsed_at":"2023-02-23T04:15:59.296Z","dependency_job_id":"f0037548-ee88-45ea-9152-4d04f27710fe","html_url":"https://github.com/damienbod/MicrosoftEntraIDMultiApis","commit_stats":{"total_commits":55,"total_committers":1,"mean_commits":55.0,"dds":0.0,"last_synced_commit":"099da3c3dc60282e984b04031015b29f184220ea"},"previous_names":["damienbod/aadmutliapis"],"tags_count":0,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/damienbod%2FMicrosoftEntraIDMultiApis","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/damienbod%2FMicrosoftEntraIDMultiApis/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/damienbod%2FMicrosoftEntraIDMultiApis/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/damienbod%2FMicrosoftEntraIDMultiApis/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/damienbod","download_url":"https://codeload.github.com/damienbod/MicrosoftEntraIDMultiApis/tar.gz/refs/heads/main","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":223696445,"owners_count":17187628,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["aad","aspnetcore","authorization","authz","azuread","consent","dotnet"],"created_at":"2024-10-01T16:45:58.780Z","updated_at":"2024-11-08T14:04:42.199Z","avatar_url":"https://github.com/damienbod.png","language":"C#","funding_links":[],"categories":[],"sub_categories":[],"readme":"# Microsoft Entra ID and Azure AD B2C Multi tenant APIs\n\n[![.NET](https://github.com/damienbod/AadMutliApis/actions/workflows/dotnet.yml/badge.svg)](https://github.com/damienbod/AadMutliApis/actions/workflows/dotnet.yml)\n\n[Using multi-tenant Microsoft Entra ID delegated APIs from different tenants](https://damienbod.com/2023/01/30/using-multi-tenant-aad-delegated-apis-from-different-tenants/)\n\n## Create the service principal for the API in your tenant\n\n## History\n\n- 2024-10-30 Added Microsoft Entra ID API and an Azure AD B2C UI multi-tenant application\n- 2024-10-25 Updated packages\n- 2024-10-06 Updated security headers\n- 2024-10-05 Updated packages\n- 2024-06-22 Updated packages\n- 2024-01-14 Updated packages\n- 2023-11-22 Updated .NET 8\n- 2023-11-03 Updated packages, fixed security headers\n- 2023-08-27 Updated packages\n- 2023-06-08 Updated packages\n- 2023-04-29 Updated packages\n- 2023-03-02 Updated packages\n\n```powershell\n\n# Connect-AzureAD -TenantId '\u003cUI-tenantId\u003e' \n\n# New-AzureADServicePrincipal -AppId 'ClientId-from-multi-tenant-api'\n\nConnect-AzureAD -TenantId 'e8b4665e-8ad9-4e12-8c3f-0d48ddb58d16'                                            \n\nNew-AzureADServicePrincipal -AppId 'ca8dc6a9-c0de-4dfb-8e42-758ef311d8ab'\n```\n\n## Give Consent in your tenant to the Enterprise applications\n\n1. Open the Enterprise Applications blade\n2. Find your enterprise application using the guid ObjectId from the powershell script\n3. Open the permissions blade\n4. Grant Admin consent if you require to use local tenant permissions\n\n## Microsoft Entra ID Permissions API\n\nPermissions used in the AAD API\n\n- none\n\n## Microsoft Entra ID Permissions UI \n\n- multi-tenant-api\n\n## Note\n\nValidate the UI client ID in the API to only allow ATs from known Azure AD B2C tenants.\n\n## Links\n\nhttps://damienbod.com/2023/01/02/azure-ad-multi-tenant-azure-app-registration-consent/\n\nhttps://stackoverflow.com/questions/60929155/how-to-create-service-principal-of-multi-tenant-application\n\nhttps://learn.microsoft.com/en-us/azure/active-directory-b2c/access-tokens\n\nhttps://stackoverflow.com/questions/74121290/allow-azure-b2c-app-registration-access-to-regular-organization-ad-app-registrat","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fdamienbod%2Fmicrosoftentraidmultiapis","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fdamienbod%2Fmicrosoftentraidmultiapis","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fdamienbod%2Fmicrosoftentraidmultiapis/lists"}