In order to validate an id_token or an access_token, your app should validate both the token's signature and the claims. In order to validate access tokens, your app should also validate the issuer, the audience and the signing tokens. These need to be validated against the values in the OpenID discovery document. For example, the tenant independent version of the document is located at https:///common/.well-known/openid-configuration . Azure AD middleware has built-in capabilities for validating access tokens, and you can browse through our samples to find one in the language of your choice. For more information on how to explicitly validate a JWT token, please see the manual JWT validation sample .
I had a head-on car crash at 65 MPH and in trying to stop (no way) I sustained communities, compound fractures of my right tib/fib, closed, which required ORIF and healed nicely. I also sustained trimalleolar fractures on the right which was pinned in surgery. While the fractures were closed, I did have a fracture blister at the site, filled with brownish fluid. My orthopod explained it was abnormal fluid which needed to find a way out, so the blister formed and it later spontaneously popped and did leave a scar. Thought it was interesting. Thank you for your great info.