Azure Active Directory (AAD) authentication or aad B2C authentication within a PHP application

Arun Pradhan (MINDTREE LIMITED) 0 Reputation points Microsoft Vendor
2024-03-29T11:58:05.8533333+00:00

My PHP application, which is built on WordPress, currently utilizes WordPress AAD authentication with client ID and client secrets. However, I am looking to discontinue the use of client secrets. Presently, I am using the functionality available on GitHub.

https://github.com/psignoret/aad-sso-wordpress

I'm exploring alternative solutions that work for PHP without requiring client secrets. I also consulted the Kiota documentation, but it also relies on client secrets.

Microsoft Graph
Microsoft Graph
A Microsoft programmability model that exposes REST APIs and client libraries to access data on Microsoft 365 services.
10,485 questions
Active Directory
Active Directory
A set of directory-based technologies included in Windows Server.
5,805 questions
Active Directory Federation Services
Active Directory Federation Services
An Active Directory technology that provides single-sign-on functionality by securely sharing digital identity and entitlement rights across security and enterprise boundaries.
1,186 questions
Microsoft Entra
0 comments No comments
{count} votes

1 answer

Sort by: Most helpful
  1. Fentahun Fkadie 0 Reputation points
    2024-03-29T12:12:20.9366667+00:00

    have you considered implementing OAuth 2.0 authorization code flow it will allow users to authenticate without the need for client secrets.