Share via

[AAD]Can I do authenticate for only my backend?

Dung Nguyen 1 Reputation point
2020-08-23T10:39:02.3+00:00

Dear all,
My application includes 2 part:

  • Frond end: ReactJS
  • Backend: Spring Boot.

As the standard, we should create two apps:

  • For FE: Implement Authorization Code by MSAL
  • For BE: verify access token

But I received a request that, only registration one app and do authentication for BE.
I tried, but that's build on two different host, so I met some trouble with the CORS issue.
Have you ever due to this scenario?? And can you give me some advice?

Azure App Service
Azure App Service
Azure App Service is a service used to create and deploy scalable, mission-critical web apps.
7,150 questions
Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
20,088 questions
0 comments

1 answer

Sort by: Most helpful
Most helpful Newest Oldest
  1. Alfredo Revilla - Upwork Top Talent | IAM SWE SWA 27,351 Reputation points
    2020-08-23T20:45:05.65+00:00

    You can create 1 app registration per host or 1 for both. Regarding the CORS issue if it's coming from your BE then take a look to Enabling Cross Origin Requests for a RESTful Web Service. If the error comes from Azure AD then please detail it.

    Please let us know if this answer was helpful to you. If so, please remember to mark it as the answer so that others in the community with similar questions can more easily find a solution.