-
Notifications
You must be signed in to change notification settings - Fork 126
Best Practices for a robust enterprise ready application
You've seen that with ADAL4J you can quite simply acquire a token for a protected Web API. You also don't have to handle refreshing tokens yourself.
However, to build robust, enterprise ready applications, you will need to do a bit more. For instance you'll want to:
-
Handle exceptions, both when you acquire a token, but also when you call the protected Web API. In particular, if your application runs in an Azure AD tenant where the tenant admins have set Conditional Access policies to enforce Multiple Factor Authentication (MFA), you will need to handle a Claim challenge which is described in Error Handling.
-
You might want to enable logging, to troubleshoot your application and help your users, while respecting their privacy and being compliant with GDPR.