使用Azure AD进行身份验证 [英] Authentication using Azure AD

查看:488
本文介绍了使用Azure AD进行身份验证的处理方法,对大家解决问题具有一定的参考价值,需要的朋友们下面随着小编来一起学习吧!

问题描述

使用自定义登录页面,而不是弹出窗口身份登录窗口.所以这是第一个 要求.我不希望该登录信息同时显示在网络视图或设备浏览器中,以保持无缝的用户体验,即仅通过应用程序自定义页面进行操作. (如果无法进行自定义登录,则可以探索这种情况).自定义登录也是如此 页面,可能吗?.

We are having 5-6 Xamarin Mobile Apps using Azure AD IDP. I want to use a custom login page rather than a pop up identity login window. So this is a first requirement. I do not want the login to show either in a web view or a device browser as well, to maintain a seamless user experience i.e. work through app custom page only. (If custom login is not possible I may explore this scenario). So is the custom login page, possible?.

注意:所使用的Azure AD版本是V1.

Note: The Azure AD version used is V1.

登录后,此移动应用程序将调用Azure AD并获取生成的承载令牌.该不记名令牌将用于调用Web api.

This mobile application after login calls Azure AD and gets the bearer tokens generated. This bearer token will be used to make calls to the web api.

此外,还有一个用Angular JS制作的网络应用,该应用也称为Web API.用户登录到移动应用程序后,将调用此Web应用程序和api.现在,我要使用现有的承载令牌,而不是登录并验证此Web应用程序和Web API. 生成以验证用户.

Further there is a web app, made in Angular JS, which calls it’s Web API as well. This web app and api will be called after user login to mobile app. Now rather than logging in and validating this web app and web api, I want to use the existing bearer token generated to validate the user.

因此,基本的要求是如何使用Azure AD对用户进行身份验证.因此,一旦生成了承载令牌,请在用户之后使用相同的令牌进行后续登录,例如将Web api登录到另一个Web api(例如WCF REST服务),或使用Web应用程序+ Web api调用 登录到移动应用.
因此,只需一个登录点,即可通过SSO实现对Web应用程序或Web API的后续访问.

So basically the requirement is how to authenticate user using Azure AD. So once the bearer token is generated, use the same token for subsequent login of say a web api to another web api (say a WCF rest service), or a web app + a web api call, after user login to mobile app.
So having just one login point, and subsequent accesses to web apps or web api’s be achieved through SSO.

因此,请使用身份验证器(例如Microsoft身份验证器)对应用进行身份验证,然后通过实现SSO功能对其他Web应用或Web API进行身份验证.

So use a authenticator (like Microsoft Authenticator), to authenticate the app and then subsequently authenticate other web apps or web api by achieving an SSO functionality.

我正在研究Azure AD V2,并使用 OAuth 2.0代表流量.这确实通过Azure AD解决了Web api到Web api的问题.

I was looking into Azure AD V2, and using OAuth 2.0 on-behalf-of flow. This does solve the web api to web api through Azure AD.

有关如何通过Xamarin Web视图登录实现Web应用程序和Web API,SSO身份验证的任何帮助或指导.

Any help or guidance on how to achieve web app and web api, SSO authentication, from Xamarin web view login.

在此先感谢!!! ..

Thanks In Advance!!!..

推荐答案

您可以关注

You can follow this guide for creating a custom authentication with custom UI. 

尽管现在没有样本可以完全满足您的目标,但这是一个样本对于您要实现的目标也可能会有用.

Though there is no sample right now that does exactly what you are aiming for, this sample may also be useful for what you are trying to achieve.


这篇关于使用Azure AD进行身份验证的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持IT屋!

查看全文
登录 关闭
扫码关注1秒登录
发送“验证码”获取 | 15天全站免登陆