Terms of Use

Last updated: March 1, 2025

1. Acceptance of Terms

By accessing or using AppConfig², you agree to comply with these Terms of Use. If you do not agree to these terms, please do not use the Service.

2. Description of Service

AppConfig² is a comprehensive tool designed to simplify the management and testing of Microsoft Entra ID applications. It provides a wide range of functionalities, including:

  • Application Registration Management: Easily create, modify, and delete Microsoft Entra ID app registrations.
  • Authentication Testing: Simulate and analyze authentication flows, including OAuth 2.0, OpenID Connect, and SAML-based sign-ins.
  • Token Decoding and Analysis: Inspect and validate JWT, SAML, and access tokens, identifying claims, signatures, and expiration details.
  • API Permission Configuration: Manage and adjust API permissions granted to applications via Microsoft Graph.
  • Role-Based Access Control (RBAC): Assign and manage application roles within your Microsoft Entra ID environment.
  • Graph API Explorer: Perform deep inspections of application settings, policies, and conditional access configurations through integrated Graph API queries.
  • Redirect URI and Authentication Method Management: Modify and test redirect URIs, authentication methods, and application secrets in real-time.
  • Session Management and Silent Authentication: Enable session persistence and silent authentication flows to optimize user experience.
  • Backup and Restore: AppConfig² creates silent backup for each tested application enabling you to restore original app configuration after testing.

AppConfig² is designed for operations teams, IT administrators, security engineers, and developers who need a streamlined way to manage Microsoft Entra ID applications, ensuring compliance, security, and efficient application integration.

3. User Responsibilities

Users must:

  • Use AppConfig² only for authorized purposes within their organization.
  • Ensure that all necessary permissions and consents are granted before using the Service.
  • Refrain from reverse engineering, unauthorized access, or misuse of the platform.

4. Administrator Consent & Permissions

AppConfig² requires administrator consent to function effectively. By granting these permissions, users acknowledge that the Service will be able to:

  • List and manage application registrations within the Microsoft Entra™ ID tenant.
  • Modify application configurations such as authentication settings and API permissions.
  • Test authentication flows and token responses.

5. Data Collection & Privacy

AppConfig² does not store, share, or misuse any user data. The Service operates entirely within the Microsoft Entra™ ID environment, and no user information is retained outside the session. Please refer to our Privacy Policy for more details.

6. Limitation of Liability

The Service is provided "as is" without warranties of any kind. AppConfig² is not responsible for any direct or indirect damages arising from the use or inability to use the Service.

7. Changes to Terms

We may update these terms periodically to reflect changes in our Service. Users will be notified of significant updates, and continued use of AppConfig² after such updates constitutes acceptance of the revised terms.

8. Contact

If you have any questions about these Terms of Use, please contact us at support@appconfig.app.