Siteminder Authentication in Single Page Application - Stack ...

... will be intercepted by Siteminder agent and user will be provided with Siteminder login template page; Upon successful authentication, ... Home Public Questions Tags Users Collectives ExploreCollectives FindaJob Jobs Companies Teams StackOverflowforTeams –Collaborateandshareknowledgewithaprivategroup. CreateafreeTeam WhatisTeams? Teams CreatefreeTeam CollectivesonStackOverflow Findcentralized,trustedcontentandcollaboratearoundthetechnologiesyouusemost. Learnmore Teams Q&Aforwork Connectandshareknowledgewithinasinglelocationthatisstructuredandeasytosearch. Learnmore SiteminderAuthenticationinSinglePageApplication AskQuestion Asked 3monthsago Active 3monthsago Viewed 46times 1 IamdoingonePOCwhereinIamplanningtointegratesiteminderwithoursinglepageapp.ThefrontendisinAngular10anditsusingAsp.NetWebAPI.Ourfrontendandbackendwillbedeployedinsameserveranditwillbeprotectedbysiteminder. SofarwhatIhavethoughtofis- UserwillhitAngularURL RequestwillcometoserverandwillbeinterceptedbySiteminderagentanduserwillbeprovidedwithSiteminderlogintemplatepage Uponsuccessfulauthentication,userwillberoutedtoAngularURL Todisplaydata,AngularwillcallRestEndpoints RestEndpointswillchecktheexistenceof"Http_SM_USER"headervalue(SetbySiteminderaftersuccessfulauthentication),andiftheuserexistsinDBandifhehasproperrole..hewillgetoneJWTtokenwithclaimsattachedtoit. Onsubsequentrequest,userwillattachthistokenincustomheaderandserverwillverifyanddotheneedful. Onlogout,siteminderlogoffuriwillbecalledwhichwillinvalidateSMSESSIONcookieanduserwillbetakentoLogoffpage. PleaseguideifthisflowisOKornot.Andifnot,whatelseneedstobetakenintoconsideration. AlsohowtoprotectAngularroutes?CanIcallbackendAPIinAngularrouteguardtoverifyifavalidSMSESSIONcookieisthereornot.IfavalidSMSESSIONcookieexists,usercanroutetoanotherURL.Otherwiseuserwillbeloggedoff. angularasp.net-web-apisingle-page-applicationsiteminder Share Improvethisquestion Follow askedAug14at7:22 AJ740414AJ740414 1111bronzebadge Addacomment  |  0 Active Oldest Votes Knowsomeonewhocananswer?Sharealinktothisquestionviaemail,Twitter,orFacebook. YourAnswer ThanksforcontributingananswertoStackOverflow!Pleasebesuretoanswerthequestion.Providedetailsandshareyourresearch!Butavoid…Askingforhelp,clarification,orrespondingtootheranswers.Makingstatementsbasedonopinion;backthemupwithreferencesorpersonalexperience.Tolearnmore,seeourtipsonwritinggreatanswers. Draftsaved Draftdiscarded Signuporlogin SignupusingGoogle SignupusingFacebook SignupusingEmailandPassword Submit Postasaguest Name Email Required,butnevershown PostYourAnswer Discard Byclicking“PostYourAnswer”,youagreetoourtermsofservice,privacypolicyandcookiepolicy Browseotherquestionstaggedangularasp.net-web-apisingle-page-applicationsiteminderoraskyourownquestion. TheOverflowBlog Newdata:Whatdeveloperslookforinfuturejobopportunities VisionAIhardwareforsoftwaredevelopers FeaturedonMeta Reducingtheweightofourfooter NewresponsiveActivitypage Communityinputneeded:Therulesforcollectivesarticles Related 352 SPAbestpracticesforauthenticationandsessionmanagement 136 CSRFTokennecessarywhenusingStateless(=Sessionless)Authentication? 2 SiteminderSSO+SpringSecurity+AngularJS 0 ConfiguringsiteminderinAEM6 166 TokenBasedAuthenticationinASP.NETCore 3 HowtoforceanupdateofaSingle-pageapplication 0 MVC4403forbiddenerrorwithsiteminder 1 HowtovalidateSM_USERheaderinSpringSecuritypreauthenticationforsiteminder 2 SSOauthenticationangularapplicationwithservicegatewaycall HotNetworkQuestions Booleancircuitsizeboundsonthemajorityfunction Forspellsthatlastseveralrounds,doIrollthediceonceandkeepthesamedamageeverytime,ordoIrollthediceagaineachtime? Cableendcrimps? Iamlookingforawordtodescribeapersonorentitywhoispermittedbysocietytodobad/greedythingsbecausetheyhavebeencharitable Whydontchessenginesusethenodejslanguage? Whyarealltrajectoriesinspaceaconicsections? CorrectuseofChi-squareandhypothesistesting? Themeaningof"posturingwiththeunseen" HowwasasinglearrowabletodothisinWhatIf...?S1E3? Reallifeexamplesof*zero*weightedgesingraphs Howtomakewhippedcreamjustlikeinacanister? HowclosearetopBridgeplayerstoperfectplay? Encodeexpressionintoalist Toiletboltbrokefreefromfloor...recommendations? Whatwillhappenifyouhaveapositionwherenoonecanlose? howtopreventblurshadownodesfromwritingamysteriousnumberinnullfont? Isthereafuseholderequivalentforadiode? Couldsettingthepermissiononthesefilesto600rendermyOSunusable?.bash_logout,.bashrc,.profile Intervieweemissedappointment IsthishomebrewmagicitemthatletsyouaddyourWisdommodifiertoyourAC(whileattuned)balancedasararemagicitem? Restorethetablerunner Isitpossibletoverifydeviceidentitytransparently? Whydodilutedsulfuricacidandhydrogenperoxideetchcopperonlywhenchlorideionsarepresent? UnexplainablyLarge(empty)ExcelFile morehotquestions Questionfeed SubscribetoRSS Questionfeed TosubscribetothisRSSfeed,copyandpastethisURLintoyourRSSreader. Yourprivacy Byclicking“Acceptallcookies”,youagreeStackExchangecanstorecookiesonyourdeviceanddiscloseinformationinaccordancewithourCookiePolicy. Acceptallcookies Customizesettings