Hello,
I'm building a intranet site. I am still in my first development phase and am considering upgrading to Core if it makes implementing Authorization easier.
I have AD Groups created for the different types of users (Admin, Read Only, etc). I have created a new Core .NET project and selected to user Windows Authentication. I've been reading a bunch of blogs, MSDN pages, gone through many tutorials (includingASP.NET Core Authorization Lab ), etc.
1. How do I connect to my company's AD Group? (The IT guys set it up is such that my AD Groups are on different servers, so I'll need to have multiple connection strings (?) out to different servers.)
2. How do I update my Startup.cs to group my AD Groups into few Roles? (Each Role has several AD Groups associated with it (one for each region))
3. Since I'm using Windows Authentication, will their AD Group Authorization automatically work? If not, do I create an IAuthorizationRequirement and AuthorizationHandler that reference the Context.User.Claim? Do I manually need to add the Role to the Claim in an AccountController?
Basically, I would love a tutorial but haven't seen one anywhere. If I figure this out (with all your lovely help) I will happily write up one. (Unless one of you direct me to a workable tutorial).
Thanks in advance!