1
We are setting up an Api for our internal systems, we enter a paradigm in the best way to create a login of users validated by AD returning token with profile being the Profile the group that the user is in AD, we are trying to design the best way for this implementation, could anyone help? Users are 1 to 1 with the group in AD, a user can only be in a group in AD.
For example, we are assembling a ADM that will consume data from the API that will be in Web Api, for this we need to create a form of login validation that generates an access token per profile, these profiles will be the groups created in AD, each user will be in a Group Ex.: Administrators, Editors ... etc today we have 5 and we believe that we will not increase, but we can create an Enum or something like... the biggest doubt is the best way to implement these validations? We thought about jwt.io, but it has little documentation...
I edited, it became clearer @bigown ?
– Thiago Adriano