Helper functions for retrieving OpenId Connect metadata from Microsoft Azure AD.

AzureADOpenIdConnect.ps1

function Get-AzureADOpenIdConnectMetadata() {
    param(
        [string] 
        $tenant = "common"
    )

    $metadata_url = "https://login.windows.net/{0}/.well-known/openid-configuration" -f $tenant

    Invoke-RestMethod $metadata_url    
}

function Get-AzureADOpenIdConnectSigningKeys() {
    param(
        [string] 
        $tenant = "common"
    )

    $metadata = Get-OpenIdConnectMetadata $tenant
    
    Invoke-RestMethod $config.jwks_uri | % { $_.keys }
}