The OAuth 2.0 and OpenID Connect flows
Now that we have covered OAuth 2.0 and OpenID Connect, we can move on to the flows that both of them support. Both OAuth and OpenID Connect provide different flows for different scenarios and application types.
In the upcoming sections, we are going to cover these different types of grant flows, starting with the authorization code flow. Additionally, we are going to cover how the Microsoft identity platform handles these flows.
OpenID Connect using the implicit flow
With OpenID Connect, you can securely sign users into an application. By using the Microsoft identity platform's implementation of OpenID Connect, sign-in and API access are added to your applications.
As mentioned earlier, OpenID Connect extends the OAuth 2.0 authorization protocol so that it can be used as an authentication protocol. In this way, you can implement single sign-on using OAuth. OpenID Connect includes an ID token for this purpose, which is a security...
