Azure Active Directory (AAD) uses OAuth 2.0 to enable you to authorize access to web applications and web APIs in your Azure AD tenant. This guide is language independent, and describes how to send and receive HTTP messages without using any of our open-source libraries.
OData Services, JSON-based custom services, and REST metadata services support standard OAuth 2.0 authentication.
Although we can create multiple types of apps using ADD, here we will discuss two kinds of applications that are supported in Microsoft AAD for Dynamics 365 for Operation:
- Native client application: This requires a redirect URI, which Azure AD uses to return token responses. This flow uses a username and password for authentication and authorization.
- Web App/API (Confidential client): A confidential client is an application that can keep a client password confidential to the world. It uses a client app ID and a client secret key to prepare client credentials. The authorization...