I'm sure this question has been asked and answered many times, but I can't seem to find a good solution.
We have an intranet web site, including a number of web services, that are secured using Azure Active Directory (AAD) and Active Directory Federation Services (ADFS). When a user, using a thin client (IE or Chrome), accesses the site, authentication happens essentially automatically: the user can observe URLs changing, but the user's domain account gets passed through and authenticated automatically. There is no popup and no login process. After that, the JavaScript in the site has a security context and can access the web services just fine.
Now we want to add a thick client for some of the administrative utilities. However, I have not found a good way to authenticate the thick client. As I said, I'm confident this is a common scenario, but I would like my WPF application to behave the way the web browsers do: use the domain account information and pass it through transparently for authentication. In fact, I assume there's a NuGet package that does this, but again, I haven't been able to find it.
Any/all help much appreciated.
Thanks! Brad.
This is because the browser is set to use IWA / WIA (Integrated Windows Auth).
This is browser functionality; not part of ADFS or AAD.
So this can't be implemented by an application (in terms of not being a browser).
There may be some library that does this - I'm not aware of one.