Hi.
I am currently using SAML 2.0 (via ADFS) for user authentication of my webserver against my corporate Azure AD domain. I use the excellent SimpleSAMLphp and it works well enough.
I would, if possible, try to keep using it. I’m wondering how I could wrap a Xojo Web application to require this authentication before allowing access.
Today I wrap the pages requiring access into an authentication routine that checks the ADFS and checks against local sessions saved in the server.
I’m not as familiar with the web application and how to run it. I’m thinking the web application could try to request authentication calling a server PHP page and redirect to the authentication page if the page doesn’t confirm the user is authenticated, and it would need to do this for every single call.
Have any of you done something like this? I tried looking for this but I only found ways to implement the authentication itself from scratch.