Introduction
While working with Microsoft Graph, most of us have assigned application permissions to an application so that the application can fetch data from Graph APIs based on the assigned permissions.
In this article, let’s try to imagine and develop things for the other end, for the API end. By the end of this article, you’ll understand how an incoming token which is created by an application can be validated before fetching resources for the request. For an API, I’m using a HTTP triggered Azure Function.
Rohan Nevrikar 