OAuth 2.0
OAuth 2.0 with Dynamics 365 CE Web API
Category: Dynamics 365,Microsoft Dynamics 365,oAuth,OAuth 2.0,Web API Author: Nishant Rana Date: 3 months ago Comments: 0

OAuth can be defined as delegation or authorization protocol. The resource owner who owns the resource is allowing an application to access that resource on their behalf without impersonating the resource owner. The application first requests for the authorization from the resource owner and receives the token using which it can access the resource. Here … Continue reading “OAuth 2.0 with Dynamics 365 CE Web API”
Source: Nishant Rana


Connect to Dynamics 365 Web API using OAuth 2.0 – Implicit Grant Type (through Single Page Apps)
Category: Dynamics 365,Microsoft Dynamics 365,oAuth,OAuth 2.0,Web API Author: Nishant Rana Date: 3 months ago Comments: 0

In previous post we saw how to connect to Dynamics 365 Web API using Postman and Implicit Grant type, in this post we will be creating a single page html application and will use ADAL library in our JavaScript to call Web API using Implicit Grant Type. While writing the single page application, we need … Continue reading “Connect to Dynamics 365 Web API using OAuth 2.0 – Implicit Grant Type (through Single Page Apps)”
Source: Nishant Rana


Connect to Dynamics 365 Web API using OAuth 2.0 – Implicit Grant Type (through Postman)
Category: Dynamics 365,Microsoft Dynamics 365,oAuth,OAuth 2.0,Web API Author: Nishant Rana Date: 3 months ago Comments: 0

In the previous post we covered below grant type Password  Client Credentials Authorization Code here we’d be looking at the Implicit Grant Type. Implicit Grant Type is for the “Public Clients”, client application that cannot keep the Client Secret, HTML or Angular app that communicates from the browser (through JavaScript) and have no server involved, … Continue reading “Connect to Dynamics 365 Web API using OAuth 2.0 – Implicit Grant Type (through Postman)”
Source: Nishant Rana


Fix – AADSTS700054: response_type ‘id_token’ is not enabled for the application -Dynamics 365 CE (Implicit Grant)
Category: Dynamics 365,Microsoft Dynamics 365,oAuth,OAuth 2.0 Author: Nishant Rana Date: 3 months ago Comments: 0

If we have not enabled the application to request an id_token directly from the Authorization Endpoint (while writing Single Page Application that uses Implicit Flow Grant), we would get the below error à To fix it, go to Manifest of the application registered and set oauth2AllowIdTokenImplicitFlow to true. Another option of setting this property is … Continue reading “Fix – AADSTS700054: response_type ‘id_token’ is not enabled for the application -Dynamics 365 CE (Implicit Grant)”
Source: Nishant Rana


Connect to Dynamics 365 Web API using OAuth 2.0 – Authorization Code Grant Type
Category: Dynamics 365,Microsoft Dynamics 365,oAuth,OAuth 2.0,Web API,WebAPI Author: Nishant Rana Date: 3 months ago Comments: 0

In the previous post we covered Password and Client Credentials grant type, here we’d be looking at the Authorization Code Grant Type. The Authorization Code Grant Type is for the Confidential Clients i.e. basically for the server side web applications that are written in server side language and source code is not available to the … Continue reading “Connect to Dynamics 365 Web API using OAuth 2.0 – Authorization Code Grant Type”
Source: Nishant Rana


Connect to Dynamics 365 Web API using OAuth 2.0 – Client Credentials
Category: Dynamics 365,Microsoft Dynamics 365,oAuth,OAuth 2.0,Web API,WebAPI Author: Nishant Rana Date: 3 months ago Comments: 0

In the last post we learned about connecting to Dynamics 365 Web API using Resource Owner Password Credential (ROPC), here we’d be covering the Client Credentials grant. Client Credentials grant is designed for the client applications who are the resource owner and when basically there are no users involved, a batch (cron) job or a … Continue reading “Connect to Dynamics 365 Web API using OAuth 2.0 – Client Credentials”
Source: Nishant Rana


Connect to Dynamics 365 Web API using OAuth 2.0 – Resource Owner Password Credential (ROPC)
Category: Dynamics 365,Microsoft Dynamics 365,oAuth,OAuth 2.0,Web API,WebAPI Author: Nishant Rana Date: 3 months ago Comments: 0

The ROPC grant type should only be used in scenario when the Client application is absolutely trusted with user credentials and when redirect based flow are not possible. It was introduced for the Legacy Application for quick migration and is now more or less considered obsolete by OAuth Working group, and ideally should not be … Continue reading “Connect to Dynamics 365 Web API using OAuth 2.0 – Resource Owner Password Credential (ROPC)”
Source: Nishant Rana