Best Regards, Ming Xu. Please mark the replies as answers if they help or unmark if not. If you have any feedback about my replies, please contact msdnmg microsoft. Microsoft One Code Framework. Sunday, December 18, PM. As Ming point out, please try to post your question on a Windows Live related forum to see if you can get some suggestions. Tuesday, December 20, PM. Thursday, December 15, PM. Thanks, LindaSView. This thread is locked. You can follow the question or vote as helpful, but you cannot reply to this thread.
I have the same question Report abuse. Details required :. Details required :. Cancel Submit. Click on the image below: I look forward to your response. How satisfied are you with this reply? Thanks for your feedback, it helps us improve the site. Hi Jill, We have not received any update from you.
This site in other languages x. Note that only confidential clients those with a secret should validate ID tokens. Public applications code running entirely on a device or network you don't control such as a user's browser or their home network don't benefit from validating the ID token. This is because a malicious user can intercept and edit the keys used for validation of the token. To manually validate the token, see the steps details in validating an access token. These claims may also be validated by your token validation library:.
Skip to main content. This browser is no longer supported. Download Microsoft Edge More info. Contents Exit focus mode. Is this page helpful? Please rate your experience Yes No. Any additional feedback?
Note Do not use the idp claim to store information about a user in an attempt to correlate users across tenants. Submit and view feedback for This product This page. View all page feedback. In this article. Specifies the thumbprint for the public key that can be used to validate this token's signature.
Emitted in both v1. Functions the same in use and value as kid. Identifies the intended recipient of the token. This value should be validated. The token should be rejected if it fails to match your app's Application ID.
Identifies the issuer, or "authorization server" that constructs and returns the token. It also identifies the Azure AD tenant for which the user was authenticated. If the token was issued by the v2. The GUID that indicates that the user is a consumer user from a Microsoft account is d-6cc5b-bab66dad. Your app should use the GUID portion of the claim to restrict the set of tenants that can sign in to the app, if applicable.
Records the identity provider that authenticated the subject of the token.
0コメント