13 questions
1
vote
1
answer
144
views
Force Flask-AppBuilder to perform MFA authentication with OAuth2
I'm running an instance of Apache Superset, a Python Flask app that uses Flask-AppBuilder's security module.
I'm using an Azure SSO config similar to that from the docs:
{
"name":...
- 23.4k
0
votes
1
answer
188
views
Get oauth token from azurite emulator with rest api
Without azurite I saw that I can obtain a bearer token by preforming a restapi call with this as the guide https://learn.microsoft.com/en-us/entra/identity-platform/v2-oauth2-implicit-grant-flow and ...
- 107
1
vote
1
answer
701
views
How to authenticate REST API blob storage operations to use azurite
I am launching azurite from the command line as outlined in the docs and that is working fine. https://learn.microsoft.com/en-us/azure/storage/common/storage-use-azurite?tabs=visual-studio%2Cblob-...
- 107
0
votes
1
answer
310
views
Authenticating to GoDaddy email via MailKit / IMAP and OAuth2.0
I am maintaining a headless (runs as a background service) application that reads emails automatically (it does not send, just parses, handles, and deletes). This had been working for years prior to ...
1
vote
1
answer
3k
views
Confused about app ID vs. client secret usage and the security of a login flow in Oauth 2 / Graph login
I have tested the following login flow (pseudo-code) with Azure AD / Oauth2 / Graph. It works perfectly:
Redirect in browser to MS365 for token: https://login.microsoftonline.com/$tenantid/oauth2/v2....
- 50
1
vote
1
answer
469
views
How to connect to IMAP server in Azure using OAuth for a MFA account in .NET C#?
When Microsoft revoked the Basic Authentication for IMAP protocol (past year), I implemented a way to get the token to use in the connection. I'm using Aspose.Email and I followed that article: https:/...
- 1,505
1
vote
1
answer
229
views
Flask restx Debug "Unauthorized" response
I have a Flask (2.2.3) app with Flask-RESTX (1.1.0) used as an API (without frontend). I'm using flask-azure-oauth library to authenticate users using Azure AD. The setup is:
from flask import Flask, ...
- 10.8k
0
votes
1
answer
93
views
Access OAuth response in a custom policy
According docs, if I need include external idp token in a response, I need this code:
<ClaimsProvider>
<DisplayName>Facebook</DisplayName>
<TechnicalProfiles>
<...
- 782
1
vote
1
answer
918
views
Scope User.Read.All not works for azure b2c
I am able to get access token using custom scope user_impersonation.
https://{tenant}.b2clogin.com/xxx.onmicrosoft.com/oauth2/v2.0/authorize?
p=B2C_1A_SIGNUP_SIGNIN&
client_id=...
- 33
0
votes
1
answer
2k
views
How to generate Access Token for Azure with grant type password? PowerBI REST API
I want to be able to get access tokens automatically without the need of user interaction (that is manually typing the credentials in an OAuth pop-out).
I'm using grant_type: password for this; ...
- 25
0
votes
0
answers
88
views
How to use azure groups as symfony security roles
Given roles hierarchy defined in security.yml which is used to grant access in our application:
role_hierarchy:
ROLE_COMMERCIAL: [ ROLE_USER ]
ROLE_MANAGER: [ ROLE_USER ]
ROLE_COMMERCIAL_ADMIN: [...
- 221
0
votes
1
answer
2k
views
MS Graph API Granted Scopes not reflecting in the Access Token
We have a mail integration for MS mailboxes and we use MS Graph API for our integration. We have created an OAuth app and the right Mail scopes have been added to the app, while generating the access ...
5
votes
3
answers
2k
views
Migrating from validate-jwt to validate-azure-ad-token policy
I've previously been using the validate-jwt policy successfully in a lot of projects. I would like to try out the new validate-azure-ad-token policy instead.
I changed one of my policies from:
<...
- 2,324