问题
I have an Angular application which talks to several WEB API's to provide an interacted UI. I am finding really hard time in finding a way to. I am following this article which explains the Angular part of it. I am able to get the token at client side. How can my dot net core web API validate the token if the client sends this id token?
回答1:
You can use JwtBearer middleware which enables an application to receive an OpenID Connect bearer token. In this document it provides code sample .
Or you can use AzureADAuthenticationBuilderExtensions.AddAzureADBearer Method in Microsoft.AspNetCore.Authentication.AzureAD.UI library :
services.AddAuthentication(AzureADDefaults.BearerAuthenticationScheme)
.AddAzureADBearer(options => Configuration.Bind("AzureAd", options));
And bind the config in appsettings.json:
"AzureAd": {
"Instance": "https://login.microsoftonline.com/",
"Domain": "xxxxx.onmicrosoft.com",
"TenantId": "cb1c3f2e-a2dd-xxxx-bf8f-f75ab18b21ac",
"ClientId": "511ece54-a7a2-xxxx-a9f9-bd224e1d0a0f"
},
来源:https://stackoverflow.com/questions/57604230/authentication-flow-for-angular-application-for-users-in-azure-ad