![]() ![]() The refresh token allows the client to acquire new access (and refresh) tokens once the access token expires, typically after one hour. You can use the OAuth 2.0 authorization code flow to securely acquire access tokens and refresh tokens for your applications, which can be used to access resources that are secured by an authorization server. You can use it for authentication and authorization in most application types, including web applications, single-page applications, and natively installed applications. ![]() The OAuth 2.0 authorization code flow is described in section 4.1 of the OAuth 2.0 specification. When possible, we recommend you use the supported Microsoft Authentication Libraries (MSAL).Take a look at the sample apps that use MSAL. In the article, we describe how to send and receive HTTP messages without using any open-source libraries. By using the Azure Active Directory B2C (Azure AD B2C) implementation of OAuth 2.0, you can add sign-up, sign-in, and other identity management tasks to your single-page, mobile, and desktop apps. You can use the OAuth 2.0 authorization code grant in apps installed on a device to gain access to protected resources, such as web APIs.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |