Microsoft identity platform documentation

Use the Microsoft identity platform and our open-source authentication libraries to sign in users with Azure AD accounts, Microsoft accounts, and social accounts like Facebook and Google. Protect your web APIs and access protected APIs like Microsoft Graph to work with your users' and organization's data.

Overview

What is the Microsoft identity platform?

Concept

Authentication & authorization basics

Concept

App types and authentication flows

sample

Code samples

What's new

What's new in docs

Concept

OAuth 2.0 and OpenID Connect (OIDC)

Concept

Migrate apps to MSAL

Quickstart

Register an application

Authentication and authorization for any application

Focus on documentation for the app you're building or extending with identity and access management (IAM) support by selecting its type.

Single-page app (SPA)

A web application whose code is downloaded and run in the browser itself.

Web app

A traditional, or "classic," web app whose code runs on a server, returning page data for the browser to render.

Web API

A RESTful web service accessed by applications or other web APIs, typically to work with data served by the API.

Desktop app

Applications with a user interface (UI) whose code runs on a user's desktop, laptop, or notebook computer.

Mobile app

Applications with a UI whose code runs on a user's phone, tablet, or other mobile device.

Background service, daemon, or script

An application or script without a UI that performs non-interactive tasks like server-to-server communication or scheduled jobs.

Get started

Quick access to guidance on adding core IAM features to your applications and best practices for keeping your apps secure and available.

Sign in users

• Single-page web app (SPA)
• Web app
• Desktop app
• Mobile app

Protect a web API

• Register an API with the identity platform
• Protect an API in code
• Call an API from a non-interactive app or script

Test and deploy apps

• Build a test environment
• Run integration tests

Build for security and resilience

• Build Zero Trust-ready apps
• Prevent an over-privileged app
• Build auth resilience into your apps

Microsoft authentication libraries on GitHub

The open-source Microsoft Authentication Library (MSAL) is hosted on GitHub. Built and supported by Microsoft, we recommend MSAL for any app that uses theMicrosoft identity platform for authentication and authorization.

.NET

Android

Angular

iOS & macOS

Java

JavaScript

Node.js

Python

React

Authenticate partners and customers

Sign in users from partner organizations in a business-to-business (B2B) scenario or create custom sign-up and sign-in experiences for your customers in a business-to-customer (B2C) scenario.

• External Identities documentation

Connect to Microsoft Graph

Programmatic access to organizational, user, and application data stored in Azure Active Directory. Call Microsoft Graph from your application to create and manage Azure AD users and groups, get and modify your users' data like their profiles, calendars, email, and more.

• Microsoft Graph API documentation

Manage and market your apps

Make existing SaaS applications like Dropbox, Salesforce, and ServiceNow available to your organization's users, configure SSO, and manage security. Or, become an independent software vendor (ISV) by publishing your own SaaS application for use by _other_ organizations that use Azure AD.

• Application management documentation

Manage application users and their access

Automatically create user identities and their roles in your organization's installed SaaS applications. HR-driven provisioning, System for Cross-domain Identity Management (SCIM), and more.

• Application user and role provisioning documentation