1) any identity system requires a login. many browsers will support auto login for windows authentication.
the individual identity uses forms and cookie logins.
ADFS/WsFederation uses oath and bearer tokens. this requires a login screen, unless you are using windows login proxy. as you are using AD, additional user properties are stored in the AD, and you need to configure ad claims mapping, or use the graph api to access.
2) the client you use msal.
https://learn.microsoft.com/en-us/azure/active-directory/develop/msal-net-adfs-support
for the server you use identity and configure for bearer (jwt) tokens
3) as bearer tokens are clear text, blazor can read. see its support for tokens (identity).
note: if you have the WsFederation autologin proxy configured, then your apps are using windows security and requires a custom claims provider. the blazor app will be unaware of this. you can make an ajax call to get the claims.