binding with issue/cancel


The dotNet ADAL library expects to learn the endpoint of the active STS able to verify a user’s challenge data from the metadata – to be recovered by the library from an endpoint associated with the “federated” account information also retrieved – by the library – from AAD. This is unlike other practices, in the microsoft online world,  in which the endpoint is learned from the IDP record, for the certified domain (for the user).

based on this code, we see generally how the “oauth” server (by exposing a port that just “happens”

image

image

Advertisements

About home_pw@msn.com

Computer Programmer who often does network administration with focus on security servers. Very strong in Microsoft Azure cloud!
Image | This entry was posted in AAD. Bookmark the permalink.