I have done quite a bit of research over the last few weeks and have not found a situation that quite fits my problem so I was hoping I could turn to the community. The high-level view of my scenario is this:
I have a Vue 2 SPA using a .NET Core Api with MS SQL Server on the back end. I have a requirement to add SAML SSO via ADFS 5.0 on Server 2019 (our ADFS is controlled by a separate team, I cannot access the ADFS servers at all).
I do have the xml metadata from the ADFS team so I know the IDP entity ID, signing cert, etc. I would prefer to handle the authentication on the JS side if possible, the idea being that my SPA would route them to the SSO login so we can utilize Username/Password OR PIV token, then route my user back to my application.
I am honestly not sure where to even start. The similar issues I have found don't line up with what we need to do. I am happy to provide as many details as I can wherever possible. What I am hoping to learn is, effectively, the following:
Thank you in advance,
Drew
Edit
A little more info I forgot to mention. My Vue SPA is hosted on a remote web server on a separate domain than our ADFS server
So, for anyone who stumbles across this post in a similar situation, the answer turned out to be that we needed to create a .NET web app to leverage WS Federation which met our authentication needs. This arlicle proved very helpful: