'UI-Less authentication with PRT

I'm trying to authenticate the logged-on user with my cloud application. I've a rich application on the end-point (C++ or C#). I've a cloud application (not necessarily HTTP protocol), running on Linux (I can change that, if I need Windows to support this scenario).

Assuming the Windows is AzureAD joined (or registered - not sure yet the difference, I'm at the beginning of the learning curve), and the user performed logged in with its Azure credentials.

I would like to get the user identity (domain, user name, SID, etc.) on my server application, in a way that is seamless (i.e. UI-less) to the user. It should be like accessing a shared resource on the local network (e.g. NAS).

What do I need to implement on the client? What do I need to implement on the server? Which API should I use? Which document I should read? where do I start?

azure-active-directorymsal


Sources

This article follows the attribution requirements of Stack Overflow and is licensed under CC BY-SA 3.0.

Source: Stack Overflow

Solution Source

Related Questions

Synapse external table "Unauthorized"

How to redirect from VB.NET legacy web application login page to azure portal to validate azure ad with MFA

Receive a request when Azure AD User receive a call

Can I use SVG within a customized the Azure AD B2C user interface?

Connecting to Dynamics 365 TDS-enabled database with OLEDB Linked Server

How do I define the SignedOut page in Microsoft.Identity.Web?

Azure AD API request 401 Unauthorized

Using multiple authentication providers in C# .net core

Active directory check if user belongs to a group

Web API with Microsoft Identity Platform Authentication

azure ad authentication issue with razor handlers

How to open the file on browser instead of downloading in local that is stored in Azure Data lake Gen 2

Error - Intent filter for: BrowserTabActivity is missing. While using AzureAD MSAL Lilbary

Azure AD B2C - Supporting a daemon app along with B2C clients such as Web page and native mobile app

what is role of User did in Verifiable Credentials ? did:ion:username and when user did will generate?