A brief review of OAuth and the SharePoint App Authentication model, followed by the steps necessary to connect an OnPrem SharePoint 2013 farm to Azure Active Directory to allow installation of low-trust apps.
Part 1 of 8 or more: Internals of Claims authentication in SharePoint and other Windows Identity Foundation-based web applications. This post includes a thorough review of the OASIS WS-* protocols WS-Security, WS-Trust, and WS-Federation. In each article, special focus is placed on application to SharePoint.
PowerShell scripts to assist with setup of an OnPrem SharePoint 2013 farm and low-trust apps (with Azure Active Directory).
Part 3 of a multi-part series on Claims authentication and SharePoint. In this post, we discuss the workings of SharePoint's implementation of the WS-Federation Authentication Module and the various redirects invoked by SharePoint to ultimately get the browser to an STS.
A function to request a security token from AD FS accompanied by an extensive explanation of how this function works. Use WIF and WCF classes to send and messages via PowerShell.
A walk through WIF's WS-Federation Authentication Module (WSFAM) and how it works, as well as insights into how this process is modified by SharePoint's own implementation of this module.