1.A stand alone arcgis server configured through azure application proxy, using azure AD SSO preauth and is accessible from outside the network on its own. This arcgis server uses web tier authentication.
2. A second azure application proxy configured for a web application, which basically is a simple html file with code to add a tiled layer from arcgis server. The tiled layer url is the external url to the arcgis server. The arcgis server is added as trusted server and jsapi version is 4.18.
3. Accessing the web application using the external azure app proxy url, in the organization network, works fine. The map shows up.
4. Accessing the web application using the external azure app proxy url gives cors errors.
If another authenticated browser session to arcgis server is opened , the application works and is able to display the tiled layer.
It almost feels like when the user logs in to the web application and makes a request to the arcgis server, the authentication is not being delegated to the arcgis server. it doesn't prompt for a second credential, it just is silent.
Any idea from experts in the forum, please?