I can see how a custom connection to Azure AD can be achieved using the implicit flow.
Is there a way of enabling PKCE? I’ve seen a random blog where it says you can use the management api to update the connection options with “pkce_enabled”: true
(Authorization Code with PKCE via connection).
I didn’t have any luck updating the connection object (bad json formats and encoding issues).
Does anyone know if auth code flow with PKCE is possble from Auth0 connectors to Azure AD?
Is there a simple way of configuring it?
Should the Azure AD application be configured as SPA or native / mobile app?
Hi Dan,
Yes I have seen that documentation. I’ve setup and used an Azure AD connection successfully in the past. That isn’t the problem.
I want to authorise to an Idp (azure ad in this case) WITHOUT a client secret. In order to do this we need to use either implicit flow or, preferably, authorisation code flow with PKCE (pkce is more secure and recommended over implicit flow).
My question is, can authorisation code flow with PKCE be enabled / configured between Auth0 Connection and Azure AD? I suspect you need to do this via an Enterprise Custom OIDC connection.
Thanks Dan. That’s great feedback. Look forward to this feature. We can get by in the short term by either a) using implicit flow or b) using the Azure AD connections and use the AD app client and secret id.
Cheers
Duane