Showing posts from Entra category
Secretless cross-tenant dataverse access
Call Dataverse in Tenant B from Azure Functions in Tenant A without storing secrets or certificates; use a user-assigned managed identity and a federated identity credential. The app is multitenant …
How Azure CLI handles your tokens and what you might be ignoring
The Azure CLI feels like magic: One az login and you’re in forever. But behind that convenience sits a cache of refresh tokens, shared across tools and tied to your Windows account. This post breaks …
Building Azure functions that never store secrets — ever
Build Azure Functions that never store secrets by using Managed Identity. Request tokens from IMDS or the App Service identity endpoint and assign Microsoft Graph app roles at deploy time with …