I spent close to 4 days looking for a good demo on client + API registration and usage. This video saved me finally! Thanks a lot. It's amazing how many talentless people upload tech videos these days.
Great explanation. Concise, straight to the point, clear. I was confused a bit after reading Zscaler's guide to OAuth2.0 setup and this video put everything in order. Thank you.
This video tutorial was so good. Got clear understanding of how app registrations work and most importantly how resource side integration with AAD works. Essentially AAD is a middle trusted entity that both client and resource registers, and then we introduce the concept of roles to better manage permissions, which would have been a hassle otherwise as we'd have to assign and validate permissions from resource code side for each client on a case to case basis.
Honestly really great presentation. I almost feel a bit bad because it looks like people didn't have any questions and looks like they were a bit disengaged from the presentation because of that, but maybe that's not the case and they were paying attention in the call. Either way I just wanted to say thanks, your presentation was incredible, exactly what I needed for my use case. The only thing that I'd say is I wish you showed the Graph Explorer right after assigning the role when you said there's multiple ways of doing this. Because when I heard I need that consent to move forward I stopped, looked for the admin, sent a bunch of emails, waited a couple days to get the access, and then I continued the video and found out it was possible to do it by myself using the Graph Explorer. That would be the only thing that I'd change, I'd just put that right after that manual role assignment so that people know right away that there is another way without waiting for admin approval and how to do it. But really great demo, loved it, keep up the good work!
This was very helpful. Any idea on how to configure scopes when there are 2 App registrations involved? Should the scope of Consumer match the Resource?
When I created a new app registration, there was no role option anymore. What would be the alternative step? As the second app registration can't select this role?
Only half part was good like how you register api and role in azure ad. But did not explain how and what security config file u created file upload apps. How you integrated your file upload application to azure ad? What dependence you added for file upload apps. 🙃🙃
Where and how is a link specified between "Resource" app and your api? How api make use of role "FileUpload" so to allow uploading files and not other action (say download)?
Nice video.... A perfect explanation, this is what I was looking for. Hit the like button..... gonna share with my colleagues and also Channel Subscribed channel as i'm gonna need more such understanding related to Azure. Thank You!
this doesn't work anymore: Specified tenant identifier is neither a valid DNS name, nor a valid external domain. Edit: instead of common in the oauth2 url, replace common by your Client1 Directory (tenant) ID 20b3c169-a473-44f3-bdb8-483d978ba462
I spent close to 4 days looking for a good demo on client + API registration and usage. This video saved me finally! Thanks a lot. It's amazing how many talentless people upload tech videos these days.
One of the best presentations I've ever heard in a short duration. Outstanding. hope more such videos will be made.
One of the best presentation so far I have learnt OAuth and utilisation in APIM. Thank you !!
Thank you. This video was exactly what I was looking for.
Great explanation. Concise, straight to the point, clear. I was confused a bit after reading Zscaler's guide to OAuth2.0 setup and this video put everything in order. Thank you.
You're a life saver. I spend an insane amount of time on this.
Excellent talk! Succinctly hit on the core points, showing exactly how to implement the security setup. Thank you!
Excellent content and presentation too!! Thanks for shating
Thanks for sharing this resource, I am implementing this in a new system and it helps me a lot!
This video tutorial was so good. Got clear understanding of how app registrations work and most importantly how resource side integration with AAD works. Essentially AAD is a middle trusted entity that both client and resource registers, and then we introduce the concept of roles to better manage permissions, which would have been a hassle otherwise as we'd have to assign and validate permissions from resource code side for each client on a case to case basis.
Really good video! Thanks for sharing!
Great presentation. Very clear explanation.
Finally found the step to setup azure ad and step to get access token without the need to login.
very helpful video Maulik...
Honestly really great presentation. I almost feel a bit bad because it looks like people didn't have any questions and looks like they were a bit disengaged from the presentation because of that, but maybe that's not the case and they were paying attention in the call. Either way I just wanted to say thanks, your presentation was incredible, exactly what I needed for my use case.
The only thing that I'd say is I wish you showed the Graph Explorer right after assigning the role when you said there's multiple ways of doing this. Because when I heard I need that consent to move forward I stopped, looked for the admin, sent a bunch of emails, waited a couple days to get the access, and then I continued the video and found out it was possible to do it by myself using the Graph Explorer. That would be the only thing that I'd change, I'd just put that right after that manual role assignment so that people know right away that there is another way without waiting for admin approval and how to do it.
But really great demo, loved it, keep up the good work!
Excellent, core points well explained with no workarounds. Thanks for the tutorial
This a really good tutorial, thank you so much. !!!!
Thank you very much for this tutorial gentlemen!
My all doubts are clear.Thanks
Awesome video!
Excellent demo & thanks a lot🙏
Sir, perfect explanation. Thank you!
you saved my day. Thanks a lot.
Excellent , very much userful , can u pls do the interospect of token with OIDC plugin
How to use Bearer Oauth using ADF pipeline ? I tried but not clear about how to do it...
Very helpful thank you.
Great thanks for the Knowledge shared!!!!!
thank you very much for this video
This was very helpful. Any idea on how to configure scopes when there are 2 App registrations involved? Should the scope of Consumer match the Resource?
When I created a new app registration, there was no role option anymore.
What would be the alternative step? As the second app registration can't select this role?
Only half part was good like how you register api and role in azure ad. But did not explain how and what security config file u created file upload apps. How you integrated your file upload application to azure ad? What dependence you added for file upload apps. 🙃🙃
Wat a great explanation. Is there a way for me as a learner just starting to do this with a trial account?
Thanks but it seems incomplete to me.
How to configure an API so that it is accessible only via the Role contained in the token ?
is there a video for Authenticate an IMAP, POP or SMTP connection using OAuth
What if instead of using client secret, I want the users to log in to ad to abtain bearer token for their own credential?
Excellent. How to authenticate from SSis
in my client1 app while giving api permissions , nothing shows under apis column
how to change "exp" jwt claim in azure entra ID
Can someone help me with the source code/Implementation for this demo provided.
Where and how is a link specified between "Resource" app and your api? How api make use of role "FileUpload" so to allow uploading files and not other action (say download)?
How is the Java ValidateToken method called? When your API is called, how will ValidateToken method be called?
How would you refresh the token after it expires using a refresh token?
on the authentication tab, should we uncheck ID Tokens or Access Tokens?
Nice video.... A perfect explanation, this is what I was looking for. Hit the like button..... gonna share with my colleagues and also Channel Subscribed channel as i'm gonna need more such understanding related to Azure. Thank You!
How does MSAL fit into this client credential flow ?
Nice video, good explanation, I have a question, can I implement OAuth2 authorization with code flow to call an API from another API?
very interesting video. Do you have a video or sample with net core 5 web api and client? using the actual AD B2C?
How does work with MSI
Thank you does this OAuth works for retrieving message traces?
Is any API is available for multi factor authentication ?
this doesn't work anymore:
Specified tenant identifier is neither a valid DNS name, nor a valid external domain.
Edit: instead of common in the oauth2 url, replace common by your Client1 Directory (tenant) ID
20b3c169-a473-44f3-bdb8-483d978ba462
Can I have the code for reference?
Sooo trueeee
Thanks
we are getting the bearer token in the response but its valid for the 1 hour so how we can make that token valid for 30 min only ?