Exam 70-486 topic 1 question 89 discussion

DRAG DROP -
You are developing an ASP.NET MVC application. You plan to use OAuth to authenticate users to the application.
You need to use the correct authentication data in the application.
What should you do? To answer, drag the appropriate data element to the correct location or locations. Each data element may be used once, more than once, or not at all. You may need to drag the split bar between panes or scroll to view content.
Select and Place:

Suggested Answer:
Live Connect implements the OAuth 2.0 protocol to authenticate users.
In the authorization code grant flow, the client makes authorization requests by using request_type=code.
The following diagramillustrates how the authorization code grant flow works.

1. The client starts the flow by directing the resource owner's user agent to the Live Connect authorization endpoint, by using a URL in the following format. https://login.live.com/oauth20_authorize.srf?client_id=CLIENT_ID&scope=SCOPES&response_type=code&redirect_uri=REDIRECT_URI
2. The authorization server authenticates the resource owner via the user agent, and establishes whether the resource owner grants or denies the client's access request.
3. Assuming that the resource owner has granted access, the Live Connect authorization server redirects the user agent to the client by using the redirection URI that was provided in the initial request.
4. The user agent calls the client with the redirection URI, which includes an authorization code and any local state that was provided by the client. For example: http://contoso.com/Callback.htm?code=AUTHORIZATION_CODE.
5. The client requests an access token from the authorization server's token endpoint by using its client credentials for authentication, and includes the authorization code that was received in the previous step.
6. If the credentials are valid, the authorization server responds by returning an access token.
References:
https://msdn.microsoft.com/en-us/library/hh243647.aspx