IConfidentialClientApplicationWithCertificate Interface

Definition

Component to be used with confidential client applications like Web Apps/API. This component supports Subject Name + Issuer authentication in order to help, in the future, Azure AD certificates rollover

public interface IConfidentialClientApplicationWithCertificate
type IConfidentialClientApplicationWithCertificate = interface
Public Interface IConfidentialClientApplicationWithCertificate
Derived

Methods

AcquireTokenForClientWithCertificateAsync(IEnumerable<String>)

[V2 API] Acquires token from the service for the confidential client using the client credentials flow. (See https://aka.ms/msal-net-client-credentials) This method enables application developers to achieve easy certificates roll-over in Azure AD: this method will send the public certificate to Azure AD along with the token request, so that Azure AD can use it to validate the subject name based on a trusted issuer policy. This saves the application admin from the need to explicitly manage the certificate rollover (either via portal or powershell/CLI operation)

AcquireTokenForClientWithCertificateAsync(IEnumerable<String>, Boolean)

[V2 API] Acquires token from the service for the confidential client using the client credentials flow. (See https://aka.ms/msal-net-client-credentials) This method attempts to look up valid access token in the cache unlessforceRefresh is true This method enables application developers to achieve easy certificates roll-over in Azure AD: this method will send the public certificate to Azure AD along with the token request, so that Azure AD can use it to validate the subject name based on a trusted issuer policy. This saves the application admin from the need to explicitly manage the certificate rollover (either via portal or powershell/CLI operation)

AcquireTokenOnBehalfOfWithCertificateAsync(IEnumerable<String>, UserAssertion)

[V2 API] Acquires token using On-Behalf-Of flow. (See https://aka.ms/msal-net-on-behalf-of)

AcquireTokenOnBehalfOfWithCertificateAsync(IEnumerable<String>, UserAssertion, String)

[V2 API] Acquires token using On-Behalf-Of flow. (See https://aka.ms/msal-net-on-behalf-of)

Applies to