I can't find a solid document on this, and Esri support was just trying to fill in the gaps....
I have an application that I configured through our web appbuilder for arcgis on our organization site. I have since downloaded the code and pasted the requisite json from the web app into the config.json on my web server at https://mywebserver/webapp
my proxy is located here: https://mywebserver/DotNet/proxy.ashx
I have registered the application and have a clientid, and secret on agol.
I can successfully browse to the application at https://mywebserver/webapp without the proxy and get prompted to enter my agol creds and it works. I just would like to remove the agol popup and enforce my own iis security. To do this I need a proper configuration in my proxy and in my json.config. Can someone use the variables that I quoted above and tell me what my <ProxyConfig> tags in my proxy.config file, and what my "httpProxy" section should look like in my config.json?
I think that's all I need. ;-)