Home > Blockchain >  Why are there multiple client secrets for each azure client id?
Why are there multiple client secrets for each azure client id?

Time:11-25

As I understand it, the idea is that azure allows the registration of multiple applications (client ids) each with multiple secrets.

I (think that I) get the part of multiple applications registrations, since each app would get fine-grained access control.

The question then is why would it be possible to create multiple (client) secrets for the same application (client) id?

Don't all the secrets provide the exact same access (since they are all bound to the same application/client id)?

Why would someone need even a second (client) secret?

CodePudding user response:

Correct, all secrets have the same access as they are similar to passwords for a user.

The point is that secrets expire, and having more than one allows you to rotate them.

  1. Before secret 1 expires, create new secret 2
  2. Update application with secret 2
  3. Remove secret 1

Page link:https//www.codepudding.com/Blockchain/622102.html

Prev:Please Help me solve this problem i have trying to solve Range extraction
Next:Function params not recognised within a-list?
  • Related

About Us:  Contact Us      Terms of Service       Privacy Policy

Copyright © 2010-2023,Powered By CodePudding