Overview
Our SharePoint 2010 application will be launched from a 3rd party application, let's call it HealthApp, via an embedded URL. Much of the time the user will be logged into HealthApp from a shared workstation. As a result, SharePoint will not sign in automatically using the Active Directory credentials.
Requirements
- We need single sign-on.
- We need to continue to use Active Directory as the STS for various reasons.
- Authentication from a stand-alone browser on the user's workstation will need to work as it does now.
Authentication Info
- HealthApp can pass a username and any other custom identifier information we want as URL parameters.
- The username will match the users Active Directory username.
- We will not have a password.
- We need some way to authenticate the user based only on the username/identifier.
Possible Solutions
- Is there any way to bypass the password check in Active Directory? This would appear to be the simplest solution if possible.
- Can we extend the Active Directory provider to authenticate using a generic user and then log into SharePoint with the username passed on the URL?
- Any other suggestions?
I would think there would have to be some way to do this but have not had much experience with claims based authentication with SharePoint.
Thanks for any insight.
