Great video, thanks Bob and Rabia. I was fighting with this again a lot this week, needed this video refresher to be published a week ago! Two comments: A (small comment) - not sure about throwing a 500 if there's no auth token sent (Bob's later sample) - maybe a 401 would be better in that case too? B (more important comment) - most of the samples / docs focus on calling Graph and assume that's the only use case. I need this all the time for another reason - I want to be sure, on my backend, that the user is who they say they are, and SSO gives me a token I can validate to make sure that's the case, together with user id and, for a multi-tenant app, a tenant id as well. For this to work, you need of course to actually -validate- the token on the server side (missing but not totally needed in your example because you're only calling Graph, which will verify the tokens in the exchange, but -definitely- necessary if you're using the tokens "As is" in your backend)

Bob is great actor.

Thanks, Bob and Rabia! It's very much useful content! But could you please clarify one thing about acquiring an `on-behalf-of` access token? In your source code examples, I see that you don't put `resource` param when fetching the access token, but in my case, I have to set it to MS Graph full domain (indicating that I'll go to MS Graph for some data after). Does it mean I've missed something in the app configuration or it's just a recent change that is not covered in your video?

I'm using the Microsoft SDK to get a token from Teams. My organization uses OKTA for SSO, and I log in to Teams via the OKTA authorizer. Is there a way to use this token to verify against OKTA or OPA? Any guidance would be appreciated!

I was wondering , when we upload the app package to teams portal we include the js file as well in it right ? In the zip itself ?

Great Video, It helped me a lot. I am getting error Access token validation failure. Invalid audience. while hitting me end point of graph api. I am able to get the access token from the user token returned by teams

Audio leveling would be helpful. Your guest is very loud, your voice is very quiet. Otherwise great content, thank you!

Though I have done the same steps but still why am I not getting that json and consent button in my tab ? Can anyone plz temme

Is there a way to do this without server side code and without constantly prompting the user?