Journey to the west of Microsoft Graph

The Azure, and by extension, Microsoft Technology stack is a powerful suite of tools and services that present an enterprise numerous capabilities and possibilities for internal projects. One of the best parts is that it already comes packaged with a "corporate" responsability ladder: RBAC (Role Based Access Control), making one of the most stress inducing project stages, desiging the authentication and authorization layer of an applicaiton, into a streamlined and simple process. The question then arrises: how do we do authentication and authorization with respect to RBAC in the Azure world? Who has this responsability? The Front-End? Back-End? Both? Neither? Join me on this journey of auth discovery as we go through these options and hopefuly learn from my mistakes on how not to waste hours from your time to design what should be a simple resource-based authorization system.