Azure API Management Authenticate to Azure-AD Protected API — Example with Single Page Apps (SPA)

Modern authentication such as OAuth2.0 and OpenID Connect is commonly used in modern web applications and APIs. A common Simple Page Application (SPA) with modern authentication enabled has a similar flow as below (simplified):

Typical application flow

--

--

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store