Skip to content

security

  • in security
  • 11 min read

Advanced Security Addendum: Scopes, Claims, and Token Behavior in Blazor Server

This document serves as a security addendum to the main article "Scopes, Claims, and Token Behavior in Blazor Server with Entra ID and Microsoft Graph". It covers advanced security topics and implementation patterns that extend beyond the foundational concepts discussed in the original document.

WARNING: This addendum was written by AI and has yet to be fully vetted.

Prerequisites: This addendum assumes familiarity with the concepts, configurations, and patterns covered in the main document, particularly the sections on token types, MSAL configuration, and WSO2 API Manager integration.

  • in security
  • 5 min read

Scopes, Claims, and Token Behavior in Blazor Server with Entra ID and Microsoft Graph

This document provides a detailed explanation of scopes, claims, and tokens in a Blazor Server application integrated with Microsoft Entra ID (Azure AD) and Microsoft Graph. It also covers their behavioral effects when APIs are accessed via a gateway, and explains the role of the issuer and authority. This guidance is intended for technical IT staff including project managers, architects, security teams, and lead developers.