OAuth2 – SecureCloudBlog

julkaissut Joosua Santasalo 14 toukokuun, 2020 0

Deep Diver – Azure AD Groups/Roles claims for developers and IT pro’s with code examples

Background Many enterprise applications rely on group /role information to be passed on assertions for authorization, and further role decisions.Lue lisää

julkaissut Joosua Santasalo 17 joulukuun, 2019 0

AAD AzureAD GraphAPI Meetups OAuth2 Uncategorized

HelSec Azure AD write-up: Phishing on Steroids with Azure AD Consent Extractor

Here is short summary of the Presentation slides and demo of the Azure AD Consent Extractor @HelSec Attackers sends OWALue lisää

julkaissut Joosua Santasalo 8 lokakuun, 2019 3

AAD saml1_1-bearer WS-Federation WS-Trust

Advisories 1-2: Azure AD and Common WS-Trust MFA Bypass explained

If there is single post I’ve been delaying for a good while, then it’s gotta be this one. This blogLue lisää

julkaissut Joosua Santasalo 6 kesäkuun, 2019 5

AAD AADSTS50146 acceptMappedClaims App Registrations JWT OAuth2 SAML

Add sAMAccountName to Azure AD Access Token (JWT) with Claims Mapping Policy (and avoiding AADSTS50146)

TLDR This blog is one of the most read blogs on this site, for that reason I plan to updateLue lisää

julkaissut Joosua Santasalo 22 toukokuun, 2019 0

AAD API Azure API management GraphAPI JWT JWT Validation OAuth2

Azure API Management – JWT validation for multiple Azure AD partner registrations

If there is one popular theme regarding API management, it’s gotta be the subject of facilitating technically partner access viaLue lisää