Concepts

TODO SSO, Delegation, Federation etc. TODO Flows: Implicit, Client Credentials, Authorization Code etc. TODO Bearer Token, JSON Web Tokens etc.

JSON Web Tokens

General

• 10 things you should know about tokens
• Choosing an SSO Strategy: SAML vs OAuth2
• OpenID Connect
• List of single sign-on implementations
• The OAuth 2.0 Authorization Framework
  • Bearer Token Usage

Libraries

.NET

• DotNetOpenAuth
• OWIN OAuth 2.0 Authorization Server
  • Building your own API and Securing it with oAuth 2.0 in ASP.NET WebAPI 2
  • Katana
  • Token Based Authentication using ASP.NET Web API 2, Owin, and Identity
  • AngularJS Authentication
  • How To: Use Azure Table Storage as an OAuth Identity Store with Web API 2

Python

• Python Social Auth

AngularJS

• Satellizer

Identity Servers

• Auth0 Hosted: Free tier 7000 users!
  • Secure Your React and Redux App with JWT Authentication
• WSO2 Identity Server
• OAuth.io
• Azure Active Directory
  • Integrating applications with Azure Active Directory
  • Secure a Web API with Individual Accounts and Local Login in ASP.NET Web API 2.2
  • Connecting Auth0 and Azure Active Directory
  • Authorize access to web applications using OAuth 2.0 and Azure Active Directory
  • Protect a Web API using Bearer tokens from Azure AD
  • Securing a web API with Azure AD
  • AccidentalFish Azure AD Identity Provider for ASP.NET
• IdentityServer3
  • Docs
  • Angular.js client sample for token manager integration

Forum posts

• http://stackoverflow.com/questions/34444812/azure-ad-application-require-role-assignment-add-a-role-assignment-for-an-ap