Nice overview.<p>I recently had to implement the same, and found the MSDN documentation (linked in the article) to be quite good, but as usual it takes a bit of effort to piece together things using only the reference documentation.<p>I also had to write some code to validate tokens handed out by Azure AD, again the documentation[1] made that pretty straight forward.<p>[1]: <a href="https://learn.microsoft.com/en-us/azure/active-directory/develop/access-tokens" rel="nofollow">https://learn.microsoft.com/en-us/azure/active-directory/dev...</a>