Is there a sample that showcases an ASP.NET framework talking to AAD using an owin-powered protocol - that takes in an idtoken minted by AAD and issues a JWT?
I ask, as Ive noted that the above pattern is exactly what azure mobile site (node.js) do...
They induce an app (with app secret) to perform a http-centric, webview/browser centric UX flow based on a particular oauth flow. Rather than have the Authorization Server mint an auth_code, the site has the issuer mint an id-token (much as one might use ws-fedp to have an FP mint a SAML token). Upon receipt of said "bearer" token, the site mints a JWT that is passed back as a #token=foo value on the redirect - a signal to the webview/browser to close down the oauth UX behaviors. The JWT plays the role of a site-minted forms auth cookie, issued in response to a bearer token.
can I replicate this using my own asp.net project, with AAD/AS as the idtoken minting authority?