Architecture for WPF with local AD Windows Auth and Remote 3rd party WebApi?

Asked Aug 06 '20 at 14:51

Active Aug 06 '20 at 14:51

Viewed 213 times

Scenario is a desktop WPF app that we desire to have no login (i.e. uses windows auth against on-prem AD). WebApi that supports app is in the cloud and currently uses Jwt against in-app user DB.

What is the best approach for a hybrid auth where users in the on-prem AD can get automatically authenticated into the app and Authentication/Authorization in the WebApi is also satisfied?

Do I need to sync the AD into the AppDb? (probably frowned upon) Do I need to deploy the app with a proxy of some sort to Auth the web client?

Basically there will be two separate authorities for User Stores and I'm not sure of the best approach to glue them together if it's possible at all.

asked Aug 06 '20 at 14:51

pseabury

1,615
3
16
30

does this answer your question: https://stackoverflow.com/questions/52146938/how-to-combine-the-windows-authentication-and-jwt-with-net-core-2-1 – Durga Prasad Aug 06 '20 at 16:26
I don't think so because WebApi is running on IIS in Azure, so adding WindowsAuthentication there doesn't make much sense. – pseabury Aug 06 '20 at 16:44
I see, I expected your on-premise AD synced with azure AD. Hence the link. – Durga Prasad Aug 06 '20 at 16:58
The WebApi has in-app user DB. Thanks for the suggestion though! – pseabury Aug 06 '20 at 17:09

Architecture for WPF with local AD Windows Auth and Remote 3rd party WebApi?

0 Answers0