You are developing a server-based web app that will use OAuth2 on behalf of the user and will be registered with the Microsoft identity platform.
Which two types of tokens can the app retrieve as part of the authorization flow? Each correct answer presents part of the solution.
NOTE: Each correct selection is worth one point.
A. SAML token
B. access token
C. context token
D. refresh token
E. Kerberos token
