I am looking to use Azure AD as my authentication system but do not want to bounce my users out to the Microsoft login page as it is disruptive and the fact that users may or may not have personal and or work accounts seems to make it quite confusing for most.
I have researched this quite a bit over the past few days but only find resources that show me AAD libraries in .NET, Azure Graph and Microsoft Graph API's. All of which seem to be convoluted systems that do the oAuth bounce through the Microsoft sign in window.
I am using Golang, but am an MSCA in .NET. If there are references to source code in .net that do not require proprietary / closed source DLL files I can use that as a starting point, or otherwise, if there is some reference point perhaps that shows how to use the MS Graph API to send username and password (entered on my site) and receive some positive or negative response indicating if the credentials provided match an account in my Azure AD would be great.
For example, I know of using https://msdn.microsoft.com/en-us/library/azure/ad/graph/api/users-operations to create, get, list, update and delete users. But it doesn't seem to have a validate or authorize procedure (unless of course I'm simply missing it).
My question is, is there a way to validate credentials without using oAuth through the Microsoft account sign in? If so can someone provide reference and or a bit of psuedo code to get me going in the right direction? Thanks in advance!