Native app (ios/android) autentication using ADFS
Question
I basically want to want to authenticate with ADFS as an external identity provider in a native ios/android app. Preferably with a seamless login experience, but that may be asking to much. The setup that I want is pretty much the one described here except that I moved the identity stuff to an STS project. The ios and android apps are accessing the web api.
I also used this pluralsight course.
Now I "just" need a way to use the credentials received from the mobile app to issue an access token. I need to know if I am on the right path. I am using:
- IdentityServer3.
- Oauth2 and OpenID Connect. (using password grant)
- The solution has to work on adfs 3.0.
- NET 4.6 web api and mvc solutions running in azure.
I have been looking at the ADAL.NET project, but that seems to be primarily for Xamarin and I already have the ios and android developed natively.
Questions:
- What is the best approach going forward?
- Are there any (perhaps new) technologies that i am completely missing?
1 answers
solution1
0 2017-04-12 04:32:05
Your basic problem is that with ADFS 3.0, there is no OpenID Connect support and very limited OAuth support - basically just auth. code grant for web API.
Much along these lines .
If you want the full stack (ala what you have with idsrv3), you need ADFS 4.0.
You could federate idsrv3 with ADFS using WS-Fed for the final hop.
The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.