![]() To compute the assertion, you can use one of the many JWT libraries in the language of your choice - MSAL supports this using. If you're interested in using a JWT issued by another identity provider as a credential for your application, please see workload identity federation for how to set up a federation policy. This is described in the OpenID Connect specification for the private_key_jwt client authentication option. One form of credential that an application can use for authentication is a JSON Web Token (JWT) assertion signed with a certificate that the application owns. The Microsoft identity platform allows an application to use its own credentials for authentication anywhere a client secret could be used, for example, in the OAuth 2.0 client credentials grant flow and the on-behalf-of (OBO) flow.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |