...
Front-end - Back-end interaction:
The client sends POST request with AD credentials to the "/web/Login/Login.html" access-point on the PASOE (swat-backend).
...
PASOES passes back to Client the ssoSessionId & ssoUserId.
Client logins into PASOE with ssoUserId & ssoSessionId.
PASOE handles login using HybridRealm with ISwatAuthenticationService by checking if the ssoSessionId & ssoUserId is valid in nodeJs.
Client is authenticated.
Note: node-main is hidden behind PASOE server from the client's perspective.
...