How can we improve Azure API Management?

Support expressions in openid-config url of validate-jwt policy to support multiple OpenID vendors with one policy

It would / should support e.g. an expression that combines

"https://"

plus the base path of the configuration document coming from some logic like

URL-Param or header attribute "openid-type"... if

"openid-type"=1 then "accounts.google.com" --Google
"openid-type"=2 then "login.microsoftonline.com/common/v2.0" --AAD
"openid-type"=3 then "login.microsoftonline.com/common/v2.0" --- AAD B2C
etc.

plus the standard path defined in the openid specs

"/.well-known/openid-configuration"

plus parameters for example for AAD B2C

if "openid-type"=3 then "?p=b2c_1_sign_in"

3 votes
Vote
Sign in
(thinking…)
Sign in with: Microsoft
Signed in as (Sign out)
You have left! (?) (thinking…)
Alfred shared this idea  ·   ·  Flag idea as inappropriate…  ·  Admin →

0 comments

Sign in
(thinking…)
Sign in with: Microsoft
Signed in as (Sign out)
Submitting...

Feedback and Knowledge Base