Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Feature: Add On-Behalf-Of (OBO) Auth Flow for the Microsoft Graph Team #19308

Closed
joshfree opened this issue Jun 17, 2021 · 0 comments · Fixed by #20451
Closed

Feature: Add On-Behalf-Of (OBO) Auth Flow for the Microsoft Graph Team #19308

joshfree opened this issue Jun 17, 2021 · 0 comments · Fixed by #20451
Assignees
@chlowell
Labels
Azure.Identity Client This issue points to a problem in the data-plane of the library. feature-request This issue requires a new behavior in the product in order be resolved.
Milestone
[2021] September

Comments

@joshfree
Copy link
Member

The OAuth 2.0 On-Behalf-Of flow (OBO) serves the use case where an application invokes a service/web API, which in turn needs to call another service/web API. The idea is to propagate the delegated user identity and permissions through the request chain. For the middle-tier service to make authenticated requests to the downstream service, it needs to secure an access token from the Microsoft identity platform, on behalf of the user.

Related Links:
Prototype: jongio/azidext#41
Documenation: https://docs.microsoft.com/en-us/azure/active-directory/develop/v2-oauth2-on-behalf-of-flow
.NET Design: https://gist.github.com/christothes/15b9903f7da0954aee166166a8fa1919
MS Graph Team's tracking issue: microsoftgraph/msgraph-sdk-java-core#132
@joshfree joshfree added feature-request This issue requires a new behavior in the product in order be resolved. Client This issue points to a problem in the data-plane of the library. Azure.Identity labels Jun 17, 2021
@joshfree joshfree added this to the [2021] August milestone Jun 17, 2021
This was referenced Jun 17, 2021
Closed
Closed
Closed
Closed
This was referenced Jul 26, 2021
Closed
Closed
@chlowell chlowell mentioned this issue Aug 27, 2021
Merged
@github-actions github-actions bot locked and limited conversation to collaborators Apr 11, 2023
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Assignees

@chlowell chlowell

Labels
Azure.Identity Client This issue points to a problem in the data-plane of the library. feature-request This issue requires a new behavior in the product in order be resolved.
Projects
None yet
Milestone
[2021] September
2 participants
@joshfree @chlowell