I have an API APP deployed in Azure & I put on Azure Active Directory Authentication. I need that API APP should be accessible outside.(The people who are not using Azure) I have added that API APP into Api Management Service to use policy & authorize API. Is any way to do that? Can I use Client Id & client secret to authenticate API APP
0
votes
1 Answers
0
votes
Yes, you can use send-request (https://docs.microsoft.com/en-us/azure/api-management/api-management-advanced-policies#SendRequest) policy as a part of request processing to call into AAD with client id and secret and obtain authentication token to attach to ongoing request. Works best with implicit oauth flow since it requires only single HTTP call.
