Enables apps to integrate with online web services without exposing a user's credentials. The web authentication broker provides a set of APIs and infrastructure for apps to use Internet authentication and authorization protocols like OAuth and OpenID.
The single sign-on (SSO) mode of the web authentication broker APIs is provided to enable users to seamlessly authenticate to a single service across multiple apps. The provider of the service must all the user to explicitly consent to that authentication, typically by providing a "Keep me logged in" option. The provider must also make it clear to the user how their identity is being used, typically by providing a link to a privacy statement from the logon page.
The Web authentication broker sample in the Samples gallery is an example of how to use single sign on (SSO) for connections.
If your app or its companion website accesses user data in Outlook.com or Microsoft OneDrive, the Live Connect APIs hide some of the complexities of authentication tokens and make it a bit easier to write code to work with these cloud services. For more info about the Live Connect APIs, see Using Live Connect to personalize apps (HTML) or Using Live Connect to personalize apps (XAML).
The Windows.Security.Authentication.Web namespace has these types of members:
|WebAuthenticationBroker||Starts the authentication operation.|
|WebAuthenticationResult||Indicates the result of the authentication operation.|
The Windows.Security.Authentication.Web namespace has these enumerations.
|TokenBindingKeyType||Gets the type of key used for token binding.|
|WebAuthenticationOptions||Contains the options available to the asynchronous operation.|
|WebAuthenticationStatus||Contains the status of the authentication operation.|
- Authentication and user identity
- Web authentication broker
- Windows authentication broker sample