App Role based authorization

Jump to bottom

Tatsuro Shibamura edited this page Oct 29, 2022 · 2 revisions

Preparation

Acmebot:AppRoleRequired = true

Create app role for application

Acmebot.IssueCertificate
- Allow new and renew certificate
Acmebot.RevokeCertificate
- Allow revoke certificate

Create the above two App Roles for the Azure AD application automatically generated by App Service Authentication.

Declare roles for an application - Add app roles and get them from a token - Microsoft Entra | Microsoft Learn

Assign app role to User/Group

Assign users and groups to roles - Add app roles and get them from a token - Microsoft Entra | Microsoft Learn