Skip to content

Commit bbc602d

Browse files
v-regandownerv-regandowner
authored
Merge pull request #230646 from dlepow/patch-180
Update use-oauth2-for-authorization.md
2 parents 040b9f8 + d1bd17d commit bbc602d

File tree

1 file changed

+8
-5
lines changed

1 file changed

+8
-5
lines changed

articles/api-management/policies/use-oauth2-for-authorization.md

Lines changed: 8 additions & 5 deletions
Original file line numberDiff line numberDiff line change
@@ -1,7 +1,7 @@
11
---
22
title: Sample Azure API management policy - Use OAuth2 for authorization between gateway and backend
33
titleSuffix: Azure API Management
4-
description: Azure API management policy sample - Demonstrates how to use OAuth2 for authorization between the gateway and a backend. It shows how to obtain an access token from AAD and forward it to the backend.
4+
description: Azure API management policy sample - Demonstrates how to use OAuth2 for authorization between the gateway and a backend. It shows how to obtain an access token from Azure AD and forward it to the backend.
55
services: api-management
66
documentationcenter: ''
77
author: dlepow
@@ -12,17 +12,20 @@ ms.service: api-management
1212
ms.workload: mobile
1313
ms.tgt_pltfrm: na
1414
ms.topic: article
15-
ms.date: 10/13/2017
15+
ms.date: 03/14/2023
1616
ms.author: danlep
1717
---
1818

1919
# Use OAuth2 for authorization between the gateway and a backend
20+
21+
This article shows an Azure API management policy sample that demonstrates how to use OAuth2 for authorization between the gateway and a backend. It shows how to obtain an access token from Azure Active Directory and forward it to the backend.
2022

21-
This article shows an Azure API management policy sample that demonstrates how to use OAuth2 for authorization between the gateway and a backend. It shows how to obtain an access token from AAD and forward it to the backend.
23+
* For a more detailed example policy that not only acquires an access token, but also caches and renews it upon expiration, see [this blog](https://techcommunity.microsoft.com/t5/azure-paas-blog/api-management-policy-for-access-token-acquisition-caching-and/ba-p/2191623).
24+
* API Management [authorizations](../authorizations-overview.md) (preview) can also be used to simplify the process of managing authorization tokens to OAuth 2.0 backend services.
2225

2326
To set or edit a policy code, follow the steps described in [Set or edit a policy](../set-edit-policies.md). To see other examples, see [policy samples](../policy-reference.md).
2427

25-
The following script uses properties that appear in {{property}}. To learn about properties and how to use them in API Management policies, see [this](../api-management-howto-properties.md) topic.
28+
The following script uses named values that appear in {{property_name}}. To learn about named values and how to use them in API Management policies, see [this](../api-management-howto-properties.md) topic.
2629

2730
## Policy
2831

@@ -35,4 +38,4 @@ Paste the code into the **inbound** block.
3538
Learn more about APIM policies:
3639

3740
+ [Transformation policies](../api-management-transformation-policies.md)
38-
+ [Policy samples](../policy-reference.md)
41+
+ [Policy samples](../policy-reference.md)

0 commit comments

Comments
 (0)