You need to develop a server-based web app that will be registered with the Microsoft identity platform. The solution must ensure that the app can perform operations on behalf of the user. Which type of authorization flow should you use?
Suggested Answer:A🗳️
In web server apps, the sign-in authentication flow takes these high-level steps: You can ensure the user's identity by validating the ID token with a public signing key that is received from the Microsoft identity platform endpoint. A session cookie is set, which can be used to identify the user on subsequent page requests. In addition to simple sign-in, a web server app might need to access another web service, such as a REST API. In this case, the web server app engages in a combined OpenID Connect and OAuth 2.0 flow, by using the OAuth 2.0 authorization code flow. Reference: https://docs.microsoft.com/en-us/azure/active-directory/develop/v2-app-types
Answer "A" is correct - using the "OAuth 2.0 authorization code grant flow"
https://docs.microsoft.com/en-us/graph/auth-v2-user
upvoted 2 times
...
This section is not available anymore. Please use the main Exam Page.MS-600 Exam Questions
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
RajatSahani
7 months, 2 weeks agomountainhyena
12 months ago