Developing Applications with Azure Active Directory: Principles of Authentication and Authorization for Architects and Developers

Chapter 1: Introduction To AAD

Chapter Goal: This chapter will introduce core concepts necessary to understand Azure AD and authentication/ authorization in general.

No of pages 10-15

Sub -Topics

1. Core AD concepts

2. Key Terms (Authentication Vs. Authorization, Token - JWT, SAML, Identity, SPN, OAuth, Tenant, Client, Resource, Claims, Multi-tenant)

3. Azure AD understanding and need

4. Azure B2C

5. Azure B2B

Chapter 2: OAuth flows/ OpenID Connect

Chapter Goal: This chapter introduces 2. OpenID Connect, OAuth and its flows.

No of pages: 10-15

Sub - Topics

1. Types of token: ID Token, Access Token, Refresh Token

2. OpenID Connect

3. Implicit Flow

4. Code Grant Flow

5. On Behalf Of

6. Client Credentials

Chapter 3: User Authentication Web App

Chapter Goal: In this chapter we dive deep into integrating web applications with Azure AD, for user-based authentication

No of pages: 25-30

Sub - Topics:

1. Single Page Application (Implicit Flow)

2. Web-App to Web API (Code Grant Flow, Token storage: Cookie based/ Distributed cache/ ADAL/ Session Storage/ Local Storage)

3. Web-App to Azure Function Endpoint (Code Grant Flow)

4. API1 to API1 (On Behalf Of)

5. Enabling Multi-Factor Authentication

6. Authentication for Integration tests

7. Authentication for Build Verification Test

Chapter 4: User Authentication Native App

Chapter Goal: In this chapter we dive deep enabling integration of various native applications with Azure AD, for user-based authentication

No of pages: 10-15

Sub - Topics:

1. Console - Web-Job, Azure Functions

2. WPF

3. UWP

4. Android

Chapter 5: Application Authentication

Chapter Goal: Understand authenticating applications with Azure AD

No of pages: 5-10

Sub - Topics:

1. Client Credentials

2. Certificate based Authentication

Chapter 6: Authenticating External Users

Chapter Goal: This chapter covers collaboration with external users and other AD tenants

No of pages: 15-20

Sub - Topics:

1. Azure B2B

2. Azure B2C

Chapter 7: Azure AD Schema Extensions

Chapter Goal: Covers extending schema of AD objects like users etc. to add custom attributes on top of attributes predefined by Azure AD

No of pages: 10-15

Sub - Topics:

1. Need for schema extensions

2. CRUD operations using C#

3. CRUD operations using PowerShell

Chapter 8: Multi-tenancy

Chapter Goal: Understand how to s