This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(275.2, 46%, 36%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EDC%3C/text%3E%3C/svg%3E)
So i am using Microsoft Graph API with the JavaScript client, Im creating a React, Node/Express and PostgreSQL database. (might not be relevant to my question).
But i need to create a database in the backend where when a user login's i can CRUD there information in the database.
I'm familiar with creating this workflow using a username and password where i would bcrypt the password, compare the passwords, log them in, then they gain access to there site and database information with the ability to CRUD the database.
(heres an example of a flow i would use): https://www.bezkoder.com/react-express-authentication-jwt/
However, i have Microsoft Graph API doing the login and logout logic. So there is no password comparison. Whats the best way to go about this? Does Microsoft Graph API have a solution for this? I just need help wrapping my brain around going about this. thank you.
i believe it might be as simple as creating a token after a successful login but not sure how that flow would look like.
any help would be greatly appreciated. thanks
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(0, 0%, 10%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EZY%3C/text%3E%3C/svg%3E)
Hi @David Cotto , may I ask if your requirement is to use Microsoft Graph Api to compare passwords?
Hello @David Cotto ,
Thanks for reaching Microsoft QnA!
You can refer Username/password (ROPC).
It is not recommended to use ROPC and it will have several limitations.
Hope this helps.
If the answer is helpful, please click Accept Answer and kindly upvote it. If you have extra questions about this answer, please click Comment.
Thank you for showing this option! I will consider it if i need to. I was hoping for a better solution. but i thank you greatly, if i cannot find a solution then i will look at this one. thank you