We are trying to create following scenario:
Html page sends ajax request to WebApi asking wheter user has certain user role or not. WebApi checks from ADFS if user is logged in (if not, WebApi authenticates user). WebApi then reads user roles from ADFS and returns true/false to html page.
Is this scenario possible with/without using your products?
We support the SAML SSO protocols. I’m not sure which ADFS interface you wish to use but perhaps it’s WS-Trust with ADFS as the STS. This isn’t something we support. If you want to participate in SAML browser-based SSO then our product can certainly be used for that.
[quote]ComponentSpace - Monday, March 21, 2016
We support the SAML SSO protocols. I'm not sure which ADFS interface you wish to use but perhaps it's WS-Trust with ADFS as the STS. This isn't something we support. If you want to participate in SAML browser-based SSO then our product can certainly be used for that.
Hi,
I'm not quite sure what you mean with your last sentence. What I really want to know is that can your product be used with WebApi and how it's handling it. Do you have any sample/documentation on the subject?
We don’t support a web API as this isn’t included in the SAML v2.0 specification.
[quote]ComponentSpace - Monday, March 21, 2016
We don't support a web API as this isn't included in the SAML v2.0 specification.
Thank you for your answer. How about a scenario, where user is authenticated in client side before using web API? Is this possible with your product?
We don't support any form of web API as this isn't supported by the SAML specification.
SAML SSO involves sending a SAML authn request to ADFS using an HTTP Redirect or Post. ADFS will prompt the user to login if they're not already authenticated at ADFS. Once authenticated ADFS will send a SAML response using an HTTP Post. This is all done in the context of a browser session. All messages are sent via the browser.