We are attempting to create the following setup within our environment... Angular 4.4+ application which uses Keycloak as the authentication server which has AD Federation and Kerberos support. This is to provide our intranet users with a true SSO experience for our internal web applications.
Flow:
- User navigates to application
- Application checks for valid token on hand in localStorage
- launch initImplicitFlow if no valid token
- Server and Client browser so a Kerberos negotiation instead of showing a login screen
- Redirect back to the application after successful negotiation just as if the user had entered correct credentials.
- Application checks for valid token in response (this is the murky part), saves tokens and user roles to localStorage, and routeguards now allow navigation in the application.
I tried to get the following sample to do the automatic login initiation, but cannot seem to get it to work. Can anybody look at this sample and see where to put the initImplicitFlow call to make this work? I've tried so many different things that I cannot even keep them straight.
Reference Project - https://github.com/manfredsteyer/angular-oauth2-oidc/tree/master/sample/src
Thanks for any help or guidance on this.