A brief review of OAuth and the SharePoint App Authentication model, followed by the steps necessary to connect an OnPrem SharePoint 2013 farm to Azure Active Directory to allow installation of low-trust apps.
Part 1 of 8 or more: Internals of Claims authentication in SharePoint and other Windows Identity Foundation-based web applications. This post includes a thorough review of the OASIS WS-* protocols WS-Security, WS-Trust, and WS-Federation. In each article, special focus is placed on application to SharePoint.
Part 3 of a multi-part series on Claims authentication and SharePoint. In this post, we discuss the workings of SharePoint's implementation of the WS-Federation Authentication Module and the various redirects invoked by SharePoint to ultimately get the browser to an STS.
A walk through WIF's WS-Federation Authentication Module (WSFAM) and how it works, as well as insights into how this process is modified by SharePoint's own implementation of this module.
A function to request a security token from AD FS accompanied by an extensive explanation of how this function works. Use WIF and WCF classes to send and messages via PowerShell.
How to set up an Azure Active Directory Preview tenant, how to set up MSOnline PowerShell to manage it, and how to get metadata about AAD ACS itself and service principals and domains.