Azure API Management – What’s what in OAuth2 related settings?
I decided to create a simple one-pager highlighting different settings in Azure API management related to validating JWT Tokens inLue lisää
Kategoria: OAuth2
AAD App Registrations custom claims grant-type:jwt-bearer Group Claims NodeJS OAuth2 SAML saml1_1-bearer
Deep Diver – Azure AD Groups/Roles claims for developers and IT pro’s with code examples
Background Many enterprise applications rely on group /role information to be passed on assertions for authorization, and further role decisions.Lue lisää
HelSec Azure AD write-up: Phishing on Steroids with Azure AD Consent Extractor
Here is short summary of the Presentation slides and demo of the Azure AD Consent Extractor @HelSec Attackers sends OWALue lisää
Advisories 1-2: Azure AD and Common WS-Trust MFA Bypass explained
If there is single post I’ve been delaying for a good while, then it’s gotta be this one. This blogLue lisää
Add sAMAccountName to Azure AD Access Token (JWT) with Claims Mapping Policy (and avoiding AADSTS50146)
TLDR This blog is one of the most read blogs on this site, for that reason I plan to updateLue lisää
