The company I work for is about to publish a custom web app (hosted in AWS) that authenticates through AzureAD.
That way, when someone goes to https://www.mywebap.com
it is redirected to AzureAd and, if successfully authenticated, access is granted.
What are the security risks here? Is this a recommended practice? As mywebapp
will be public it can be theoretically attacked.