the certificates are not installed on the local machine, or. If not, feel free to use the same workaround as I did.The key needed to verify the signature could not be resolved from the following security key identifier 'SecurityKeyIdentifier'. So in case somebody else has the same problem: If you find a proper solution, please contact me. I am not really happy with the solution I finally came up with, but that was the solution I was able to implement after many days of research, anger, tears, questioning life. This is not very fast I guess, as I have to loop through all List Items I get (because I am running the code as Admin) and then check each one for the permissions and sort it out, if the user should not be allowed to see it. I then did the Security Trimming myself, by checking if the current user (see client) has the needed permissions on a specific list Item for example. I used the to call the GetADFSUserNameMixedAuthenticatedContext function and did everything within the context of the provided (elevated) user. I used an AzureAPP du get an Id token of the current user, which I parsed to get the AzureAD loginname of that user. So here is how I managed to solve my problem anyway: I still do not know if the flow with ADFS involved can be done the way I tried it. I did not get the setup running like I wanted it to. I obviously don't fully understand the connection of my Applications to the SharePoint. There I configured my IIS Site and SharePoint Site as Relying party identifiers. I also have a Web API Application in the group. These settings are used in the Angular App. In this group I have a Server Application where I specified ClientID and redirect Uri. In the ADFS Management Console I created a Application Group. The authorization server can not find a registered resource with the specified identifier 
* MSIS9602: The received 'resource' parameter is invalid. * MSIS9605: The client is not allowed to access the requested resource * AADSTS50013: Assertion contains an invalid signature. The Problem is that after step 4 I get one of these errors that says: I also have no errors in the Event log on the ADSF Serverģ) The Angular App Calls my WCF API and sends the tokenĤ) The WCF creates a User Assertion Object and trys to obtain a token to access SharePoint using Clientcontextĥ) I should get back another token valid for access SharePointĦ) I use clientcontext to get data from the SP SiteĨ) The WCF sends the data to the client which displays it for the user Audience is a Native App which I configured on ADFS. He gets redirected to ADFS and enters his credentialsĢ) I get a token back from ADFS which looks good. * WCF Middleware also using AuthenticationContextġ) The user opens a site. * Angular JS Client Application using ADAL I have the following task: Connect to a SharePoint 2016 Site which is Secured by ADFS using an Angular Client.
0 kommentar(er)
