Hi all,
I hoping someone can give me some advice on the best way to proceed there are lots of solutions to this I have seen but none seems to fit my needs.
So I am creating a MVC application in .NET Core 3.1 which also has an Angular SPA. I will be deploying to IIS 7.5.
The idea is for the MVC application to provide REST API's to the SPA, and i need to authorise with windows authentication so it can access server resources such as msmdpmup (Analysis Services) however not all domain users have access to this. I cannot use roles because the roles are based around departments for my company so I would like to also perform a check to a database to see if the user has access.
I have already tried using cookie authentication but instead of storing username and passwords I validate the credentials against the active directory and also perform a check against the database which gives access to the correct users but does not allow for passthrough authentication to msmdpump as the header does not contain a windows auth token.
Would anyone have any advice on how I should approach this?
If you need anymore detail please let me know.
Cheers,Joe