提高你开发的身份验证和授权应用程序的复原能力Increase resilience of authentication and authorization applications you develop

Microsoft 标识使用基于令牌的新式身份验证和授权。Microsoft Identity uses modern, token-based authentication and authorization. 这意味着应用程序会从标识提供者那里获取令牌来对用户进行身份验证和授权该应用程序调用受保护 API。This means that an application acquires tokens from an Identity provider to authenticate the user and to authorize the application to call protected APIs.

令牌的有效期是一段时间,之后应用必须获取新的令牌。A token is valid for a certain length of time before the app must acquire a new one. 由于网络或基础结构故障,或者由于身份验证服务中断等问题,对检索令牌的调用可能会失败;但这种情况很少发生。Rarely, a call to retrieve a token could fail due to an issue like network or infrastructure failure or authentication service outage. 在本文档中,我们概述了开发人员可执行哪些步骤来提高其应用程序在令牌获取失败的情况下的复原能力。In this document, we outline steps a developer can take to increase resilience in their applications if a token acquisition failure occurs.

这些文章会指导你如何使用 Microsoft 标识平台和 Azure Active Directory 来提高应用中的复原能力。These articles provide guidance on increasing resiliency in apps using the Microsoft identity platform and Azure Active Directory. 还对客户端应用程序和守护程序应用程序提供指导,前者代表已登录的用户工作,后者代表自己工作。There is guidance for both client applications that work on behalf of a signed in user as well as daemon applications that work on their own behalf. 它们包含有关使用令牌和调用资源的最佳做法。They contain best practices for using tokens as well as calling resources.