Tools, FAQ, Tutorials:
Validate Azure AD v1 id_token
How to validate the id_token value received from Azure AD v1.0 authentication response?
✍: FYIcenter.com
As you can see from the previous tutorials, you can easily decode the "id_token" value received from Azure AD authentication response using a simple PHP script.
After decoding, you can get all information about the end user from the body component, and trust it without any validation.
But, since the "id_token" is included in the authentication response delivered over the public Internet, you should not trust it and perform a number validation steps:
1. Data structure validation.
2. Data attributes validation.
3. Timestamp attributes validation. This will prevent someone to repost the authentication response to your server script at a later time.
4. "nonce" protection and validation. This will prevent someone to repost the authentication response again immediately.
5. Signature validation. This is to ensure the entire authentication response message has not been modified by someone else. See next tutorial on how to perform "id_token" signature validation.
⇒ Validate Azure AD v1 id_token Signature
2021-05-16, 1438🔥, 0💬
Popular Posts:
How To Avoid the Undefined Index Error in PHP? If you don't want your PHP page to give out errors as...
What is Azure API Management Developer Portal Admin? The Developer Portal Admin is an Azure Web port...
Where to find tutorials on EPUB file format? I want to know how to create EPUB books. Here is a larg...
Where to find EPUB Sample Files? Here is a list of EPUB sample files collected by FYIcenter.com team...
How To Pass Arrays By References? in PHP? Like normal variables, you can pass an array by reference ...