Hi SF developers,
I'm trying to integrate Sitefinity's claims based authentication with our web api. The requirement is quite simple:
User logs into Sitefinity with a user name and password, when the widget needs to call the backend WebApi, it retrieves a token from Sitefinity and presents it to the api. The Api validates the token and if valid, perform the action, otherwise reject it.
Does this sound like a simple and reasonable scenario with Sitefinity?
I've configured sitefinity 6.3 to use Claims Based Authentication and added a replying party for the web api host.
What I need some help with is sample code on how to request and validate the token.
Thanks in advance.