Please edit the post in case the question sounds meaningless. I have some idea of how kerberos authentication work in browser. At our company we have a .NET library that generates a kerberos token using the AD information and then authenticates the user. This library is used by several desktop client applications so they do not have to do authentication themselves. Using the token I can know more about the logged in user etc.
I am trying to replicate this behavior for the web applications. Is there a way that I create a may be single javascript file which apps can include in their starting page, and I generate the token for them? I am thinking if I can create a kerberized web api that when called from this javascript gets the token for the calling app...
I understand in the web scenario, the browser itself can generate the token. But I am not able to formulate a solution (if any) to do such "central" kerberos token generation so each app need not find a way who is the user using their web application.
Aucun commentaire:
Enregistrer un commentaire