[英]Native app (ios/android) autentication using ADFS
I basically want to want to authenticate with ADFS as an external identity provider in a native ios/android app. 我基本上想在本地ios / android应用中使用ADFS作为外部身份提供程序进行身份验证。 Preferably with a seamless login experience, but that may be asking to much.
最好具有无缝登录体验,但这可能要求很多。 The setup that I want is pretty much the one described here except that I moved the identity stuff to an STS project.
除了将标识内容移至STS项目之外,我所需的设置几乎是此处描述的设置。 The ios and android apps are accessing the web api.
ios和android应用正在访问网络api。
I also used this pluralsight course. 我也使用了这个多元视野课程。
Now I "just" need a way to use the credentials received from the mobile app to issue an access token. 现在,我“只是”需要一种方法来使用从移动应用程序接收到的凭据来发出访问令牌。 I need to know if I am on the right path.
我需要知道我是否走对了。 I am using:
我在用:
I have been looking at the ADAL.NET project, but that seems to be primarily for Xamarin and I already have the ios and android developed natively. 我一直在研究ADAL.NET项目,但这似乎主要是针对Xamarin的,我已经原生开发了ios和android。
Questions: 问题:
Your basic problem is that with ADFS 3.0, there is no OpenID Connect support and very limited OAuth support - basically just auth. 您的基本问题是,使用ADFS 3.0时,没有OpenID Connect支持,而对OAuth的支持非常有限-基本上只是auth。 code grant for web API.
Web API的代码授权。
Much along these lines . 在这些方面都是如此 。
If you want the full stack (ala what you have with idsrv3), you need ADFS 4.0. 如果需要完整的堆栈(与idsrv3一样),则需要ADFS 4.0。
You could federate idsrv3 with ADFS using WS-Fed for the final hop. 您可以使用WS-Fed作为最后一跳,将idsrv3与ADFS联合。
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.