I'm working on AzureAD authentication in web API. Every thing is working fine for me. I'm curious, how below piece of code validates the Azure Active directory Token.
app.UseWindowsAzureActiveDirectoryBearerAuthentication(
new WindowsAzureActiveDirectoryBearerAuthenticationOptions{
Audience = ConfigurationManager.AppSettings["ida:Audience"],
Tenant = ConfigurationManager.AppSettings["ida:Tenant"]
}
);
Q1) Will it call the azure active directory for webapi request?
Q2) Will it holds any keys(Private key, public key, etc)? If yes, what are the tokens? How and where?
Q3) How it decrypts the bearer token ?
Q4) Is it secure enough to depend on the chunk?