I am trying to protect my API (springboot+java) using Client Credential Grant flow with Azure AD as Authorization Server. I have looked the internet but the examples I am finding is resource and authorization server in springboot. Does anyone has any samples of how to secure API with Client Credential Grant Flow using Java Springboot and Azure AD? Any help will be highly appreciated.
1
votes
The Authorization Server is the Microsoft identity platform endpoint, see here. Not sure what "Azure AD as Authorization Server" means?
– Pamela Peng
I want Azure AD to provide access token.
– Juhie
You want to authenticate in Azure AD using 'username + password', then, if authentication succeeded, you generate a token in Java, or you want the Azure AD to generate the token for you?
– Matheus Cirillo
I want Azure AD to generate the token. I want authentication with clientId and clientsecret. Server to server interaction without user intervention I want
– Juhie
1 Answers
0
votes
We use client credentials flow to get access token with the following steps. The access token is provided by Azure AD.
Try this sample with ClientCredentialsResourceDetails.
