We have below Azure AD Authentication Integration (Single Sign on login) Queries : -
How to get Authorization code in front end application (ASP.NET MVC)?
Based on Authorization code how to get Access Token and refresh token in front end application (ASP.NET MVC)?
How to Validate Access token in Java sprint boot web API and what response should web API give to frontend Application?
Is it possible to Validate JWT Token in sprint Boot API call only once? or do we need to validate token in all web API calls?
Front End Application Details and Authentication Flow details:
Application Type: MVC Web Application
Technology: ASP.NET MVC
Framework Used: .NET Framework 4.5.2
Library Used for Azure AD Authentication: Microsoft.Owin
Authentication Flow Used : OAuth 2.0 Authorization Code flow
Back End (Web API ) details:
Framework Used : Sprint boot Framework 2.1.6.
Technology : Java 1.8
Library Used for Access Token (JWT Token) Validation : spring-boot-starter-oauth2-client 2.1.6
Server Host Details :
API Server is hosted on different windows server and Web Application is hosted on different windows server.