Last post Feb 04, 2014 07:48 PM by danp276
Feb 01, 2014 09:47 PM|SamU|LINK
Is it possible to have mixed authentication in an MVC 5 application? By mixed, I mean, Active Directory and Social Login where users can identify their domain and login using their AD account or use their Facebook or Google accounts?
Feb 03, 2014 02:02 AM|me.sachan|LINK
Unfortunately we can not do that until and unless client browsers tell us the information about the logged-in domain. And internally if you closely analyze its client browsers have to send a request to AD/ADFS for authentication and in several internally
redirect AD/ADFS system makes the decision as that user is already logged into AD/ADFS and then it issues a token/authenticate the same and not otherwise. So application has to send a request to that AD/ADFS or other releated providers such ldap, social auth
providers and so on.
I have struggled a lot there is a turnaround that you can develop a active x component which will be installed inside users browsers and then perform the same activity but having said that its a activex component most of the time enterprise policies wont
allow to complete this request.
Other different ways to solve the same problem is to have a business sts in between your resource and identity provider. And use the url based request to process and redirect for authentication.
Feb 03, 2014 11:02 AM|SamU|LINK
Thank you for your response.
Feb 04, 2014 07:48 PM|danp276|LINK
I'm sorta in the same boat, I just want to know the username and the domain of the person accessing my internal LOB website. Some are coming from AD and some are not.
I seriously can't get: HttpContext.Current.User.Identity
unless I uncheck anon access on IIS?
It works ok on my WCF service when my WPF or silverlight program makes a call. I can have both checked. Please tell my I can do this.