My setup:
- Sharepoint 2013 RTM with March PU and August CU - target site is a developer site (http://10.7.8.161/sites/dev)
- A high trust provider-hosted MVC4 app hosted on the same IIS7 instance as the sharepoint web application, but with its own separate IIS web site outside of sharepoint instance (http://10.7.8.161:2200).
- S2S connection is established by a trusted token issuer with a self-signed certificate.
- This setup works fine except that the MVC app still prompts for user credentials when it's being launched from the authenticated sharepoint target site (http://10.7.8.161/sites/dev)
What we don't want:
- Adding the app URL as a trusted site from the browser to eliminate the credential prompt.
- Putting the app in a virtual folder underneath the sharepoint web application (http://10.7.8.161/TestApp)
- Making the app low trust that uses intermmediate trust brokers such as ADFS or Azure ACS.
Could someone let me know if it's possible for a high trust app to be configured to accept authenticated credentials coming from Sharepoint and vice versa. And if so, how can it be done?
Thank you all