The basics of modern authentication - Microsoft identity platform

preview_player
Показать описание
In this video, Nicholas Adman and Kyle Marsh explain the most basic concepts behind modern authentication, including a typical authentication and authorization flow, the tokens that are used and what they look like, and how to call more than one protected API.

Intro - 0:00
Basic modern authentication flow - 0:24
Single sign-on - 2:32
The ID token - 4:20
The access token - 7:26
Calling more than one protected API - 8:59
Summary - 10:49


► Follow us on social:

#ModernAuthentication #AzureAD #Identity
  1. Microsoft Security
  2. Microsoft Security
  3. data privacy
  4. cyber security
  5. cloud security
  6. business security
Рекомендации по теме
The basics of 0:12:28

The basics of modern authentication - Microsoft identity platform

Authentication fundamentals: The 0:04:33

Authentication fundamentals: The basics | Microsoft Entra ID

Modern authentication: how 0:15:48

Modern authentication: how we got here – Microsoft identity platform

What Is Modern 0:07:29

What Is Modern Authentication?

How to check 0:03:40

How to check if Outlook is using Modern Authentication or Basic Authentication

Moving from Basic 0:01:31

Moving from Basic Authentication to Modern Authentication

'Basic Authentication' in 0:05:07

'Basic Authentication' in Five Minutes

OAuth 2 Explained 0:04:32

OAuth 2 Explained In Simple Terms

Modern Login Page 0:00:11

Modern Login Page Design with HTML, CSS, and JavaScript | Web Dev Shorts #coding #cssanimation

A Deep Dive 0:43:38

A Deep Dive into Azure AD's Modern Authentication Protocols: Part 1

How to configure 0:09:54

How to configure Microsoft 365 Email in Outlook | Modern Authentication

Modern Authentication in 0:22:54

Modern Authentication in Office 365

What is Authentication 0:21:05

What is Authentication in Office 365? | From Basic to Modern Authentication | Complete Guide

Basic Authentication vs 0:01:00

Basic Authentication vs Modern Authentication Office 365 #shorts #youtubeshorts #shortsfeed

What the Heck 0:00:49

What the Heck is Modern Authentication for Non-Techy Outlook Users.

Demystifying Modern Authentication 0:54:14

Demystifying Modern Authentication

Yes, Microsoft's E-mail 0:03:17

Yes, Microsoft's E-mail Regarding The End of Basic Authentication in Outlook is Legitimate

Authentication fundamentals: Web 0:06:02

Authentication fundamentals: Web applications | Microsoft Entra ID

What is this 0:47:35

What is this Modern Authentication and why you should phase out Legacy authentication?

Modern Login | 0:00:13

Modern Login | UI Design To HTML, CSS

Starting Today September 0:05:22

Starting Today September 16, You Won't be Able to Access Outlook on Third-Party Apps!

Authentication fundamentals: Federation 0:06:19

Authentication fundamentals: Federation | Microsoft Entra ID

Modern login form 0:00:05

Modern login form made with only HTML & CSS - Transparent Login Form | #coding #webdevelopment #...

Migrate apps to 0:17:25

Migrate apps to modern authentication

Комментарии
Автор

Thanks & I wonder if there is a video that has more details about the different workflows that exists

zakiit
Автор

When developing, how do we work with ID and Auth tokens?

raulands
Автор

I would've liked if there was a transcript that would read what was said. it was a little hard to keep up with the conversation, but still very informative.

salvadorgarcia
Автор

Around 5:40, Kyle mentions the audience of the token and instructs us to check it to ensure that its our application, but doesn't that mean we have access to other applications tokens?

kevin
Автор

The one thing that I am probably missing, is how the access token is confirmed with the or in the API, that is the correct one ?

nolimitsREAL
Автор

8:42 "And then the API needs to validate the JWT signature..." - but you just said that you're sending the Access Token...which, as you said 1 minute before, is not a JWT!

It's little things like this that make this stuff harder than it needs to be.

richieroo
Автор

7:19 So funny you say 'Shouldn't use this as a key', yet the Microsoft Store uses email addresses as a key. .When I got a refund, my account was deleted, and then I signed up again I had to use an alternate email, when I have had one email for 10 years at the time, now 15. Now I can't remember my email, and no one from Microsoft can help me find my account. Too big a company, and do as a I say, not as I do.

DataJuggler
Автор

What is the difference between API permissions and expose API in Azure AD?

photoartbergmann
Автор

I wish, additionally to videos, you guys would write articles for the same information.
Many people are readers and hate to hear voices when studying, in particular when the speakers are poor and a distraction. The alternating speakers in this video are particularly annoying, the video editing is less than mediocre.

ssssssssssss
Автор

As useful as this be i really dislike the throat-dominate kind of voice especially for technical explanation.
Just difficult to digest what was being said.
Maybe just my hearing problem.

Meanwhile Kyle's voice is really easy for me to listen

KenDiriwan