Morning Of us,
My problem is to offer SSO from a third celebration utility which makes use of a proprietary login operate, to an Azure AAD authenticated internet app.
On clicking the hyperlink, The third celebration app triggers POSTing a signed SAML token containing a consumer ID to the endpoint I must configure in Azure.
That is the half that’s fastened and out of my management. I must discover a approach of authenticating the consumer from that POST request. I’ve appeared into if for a very long time and can not seem to discover a technique for this.
The theoretical Azure endpoint must validate the token, parse out the Userid, match this to the related AAD account (which we sync as much as the third celebration, so can assure as present) and return a session cookie and redirect URL because the POST response, which can then redirect to my Azure internet app utilizing the newly created AuthN session.
The query is, is there an Azure function that may deal with this? I’ve appeared into
OAuth 2.zero implicit grant stream,
OAuth 2.zero auth code grant,
OAuth 2.zero on-behalf-of stream,
OAuth 2.zero shopper credentials grant.
And these do not appear to have the ability to create an AAD session for a consumer with no username and password.
I hope this is smart. If i am tackling the issue improper then I am pleased to take criticism. I am very new to Azure!