binding with issue/cancel


The dotNet ADAL library expects to learn the endpoint of the active STS able to verify a user’s challenge data from the metadata – to be recovered by the library from an endpoint associated with the “federated” account information also retrieved – by the library – from AAD. This is unlike other practices, in the microsoft online world,  in which the endpoint is learned from the IDP record, for the certified domain (for the user).

based on this code, we see generally how the “oauth” server (by exposing a port that just “happens”

image

image

Advertisements

About home_pw

Computer Programmer who often does network administration with focus on security servers. Sometimes plays at slot machine programming.
Image | This entry was posted in AAD. Bookmark the permalink.