如何在Azure Developer Service中实现SSO

How to implement SSO in azure developer service

我们有一个 API,我们计划在开发人员服务下在 Azure 市场上发布这个 API。对于身份验证,我们计划在 API 中使用开发者服务 SSO(单点登录)。我用谷歌搜索了这个,但找不到任何有用的 link,请推荐一些 links

Azure AD B2C 最近普遍可用,它以某种方式提供了您正在寻找的东西。您可以使用本地 Azure 身份 and/or 社交帐户让您的最终用户通过 SSO 支持进行身份验证。 https://azure.microsoft.com/en-us/services/active-directory-b2c/

话虽这么说,但您可以使用 AAD b2C 保护您的 Web API,如此 guide, your customers won't be able to call this WebAPI from their own applications as the calling app must be registered in the same Azure AD directory with the same application Id. This is a limitation that is mentioned here:

Note: Azure AD B2C currently supports only web APIs that are accessed by their own well-known clients. For instance, your complete app may include an iOS app, an Android app, and a back-end web API. This architecture is fully supported. Allowing a partner client, such as another iOS app, to access the same web API is not currently supported. All of the components of your complete app must share a single application ID.

如果您不介意上述限制,那么您可能也对此感兴趣 Azure article 以在 Azure AD 应用程序库中列出您的应用程序。