Implementing Azure Active Directory Access Control
Question
My current situation is that I have a an Angular2 app and two Web APIs that this calls, all of which are hosted in Azure. I would like a user to register/log in using external providers such as Facebook, Google etc.
I've done a bit of googling and found Auth0 which seems to do everything I want. However as I'm using Azure I'd like to try using this.
I came across this article Azure Active Directory Access Control which describes exactly what I want to do. However, I can find no details about how to implement this.
Any pointers on how I can do this? I don't want my APIs to be aware of auth providers, it should just accept a token and proceed.
I've looked in the config for Active Directories in Azure but can't see anywhere to add the provider details?
Thanks
2 answers
solution1
3 ACCPTED 2017-03-17 02:07:46
AFAIK, we can use Azure Active Directory B2C to achieve the goal.
Azure Directory B2C is a comprehensive cloud identity management solution for your consumer-facing web and mobile applications.
For integrate with Google, since it will start blocking OAuth requests from embedded browsers, called "web-views", we need to make changes to your applications to avoid downtime. For more information about Google's plans, see Google's blog post .
And more detail developing with Azure B2C, you can refer the link below:
Azure Active Directory B2C: Sign up and sign in consumers in your applications
solution2
1 2017-03-16 14:36:34
Basically, you add the ACS service to your subscription and then configure it for the identity providers you want to use. It is a separate service in Azure, and you can add it through the original portal ( https://manage.windowsazure.com ), by clicking New -> App Services -> Active Directory -> Access Control.
But do note that ACS seems to be a service that is going away. This two year old blog post from Alex Simons tells a little about it: https://blogs.technet.microsoft.com/enterprisemobility/2015/02/12/the-future-of-azure-acs-is-azure-active-directory/ .
There's already an answer on how to set it up: Enable Azure Active Directory Access Control with Office 365 Azure Active Directory tenant .
There's some further detail on this site: http://blog.2mas.xyz/configuring-windows-azure-active-directory-access-control/ (I would include the main points here, but it's a very detailed step-by-step instruction with lots of screenshots).
The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.