Hi @Abhay Chandramouli ,
Thanks for reaching out.
The sts.windows.net
and login.microsoftonline.com
are both Security Token Services (STS) that issue tokens for Azure Active Directory (Azure AD). The sts.windows.net
is the original STS for Azure AD v1, while login.microsoftonline.com
is a newer STS that was introduced to support newer authentication protocols like OpenID Connect. Both issuers can issue tokens for Azure AD, but the tokens issued by login.microsoftonline.com
are generally newer and support more features.
Both the sample tokens have been provided here - https://learn.microsoft.com/en-us/entra/identity-platform/access-tokens#token-formats
You can decode those tokens using jwt.ms and then compare the slightly varying claims of the tokens.
Hope this will help.
Thanks,
Shweta
Please remember to "Accept Answer" if answer helped you.