Reputation: 5162
Active Directory authentication of Web App using WebAPI
We have
- a standalone single-page application which is served from domain1 OR cordova
and
- a WebAPI with ASP.NET Identity on domain2.
So far we have username + password, but now we want to add Active Directory authentication and use AD claims for authorization on the backend.
The ADAL libraries work fine, but how do we add the WebAPI (not MVC) into the authentication chain?
It seems the single-page-app libraries authenticate directly with AD, but ultimately we have to obtain a cookie from the WebAPI.
What am I missing?
Update: Found UseWindowsAzureActiveDirectoryBearerAuthentication
Upvotes: 1
Views: 663
Answers (1)
Reputation: 3237
You'll need to use the Open Id Connect Middleware (that UseWindowsAzureActiceDirectoryAuthentication you pointed out) with Azure AD (or Azure AD Passport.js for Node) to set cookies and accept tokens on a web api.
The Azure AD Developer Guide is always a good place to start; however, there is a OWIN code sample for this specific instance.
Upvotes: 1
Related Questions
- Web API authentication via Active Directory
- Using Azure Active Directory authentication in ASP.NET Core 2.0 from Web App to Web API
- How to Implement Active Directory Authentication in ASP.NET Web API Through Forms?
- Claims based authentication, with active directory, without ADFS
- Authentication for web api using azure AD
- Use Active Directory with Web API for SPA
- Authentication with active directory API DirectoryEntry
- Implementing active directory authentication using web api and its scope
- Authentication of a WebAPI with Azure Active Directory
- How to Use Active Directory Authentication with ASP.NET Web API?