Apps can refresh tokens to get other access tokens and ID tokens for the signed in user. ![]() The flow enables apps to securely acquire an access_token that can be used to access resources secured by the Microsoft identity platform. These types include single page apps, web apps, and natively installed apps. With OIDC, this flow does authentication and authorization for most app types. The OAuth 2.0 authorization code flow is described in section 4.1 of the OAuth 2.0 specification. For more information, look at sample apps that use MSAL. When possible, we recommend you use the supported Microsoft Authentication Libraries (MSAL) to acquire tokens and call secured web APIs. ![]() This article describes how to program directly against the protocol in your application using any language. ![]() Using the Microsoft identity platform implementation of OAuth 2.0 and Open ID Connect (OIDC), you can add sign in and API access to your mobile and desktop apps. The OAuth 2.0 authorization code grant can be used in apps that are installed on a device to gain access to protected resources, such as web APIs.
0 Comments
Leave a Reply. |