i have followed steps in tutorial retrieve ssotokenid in http response header wso2 identity server 4.1.0. running locally.
to simulate secondary app, want send http request wso2 identity server, different browser. receive kind of confirmation user indeed logged in. maybe saml response?
i assume following:
- it not relevant add jsessionid
- it not possible reuse saml assertion received in first app
i expect send following request demo app, or wso2 identity server confirmation. unfortunately not work. proper way confirm user logged in?
http://localhost:8080/saml2.demo/home.jsp?ssotokenid=5851787bc6fa951fe3a5776be83f9b03 or
https://localhost:9443/carbon/admin/login.jsp?ssotokenid=1e5f811e2fac8afbee31621e889de3fd
thanks question, assuming user logged in via sso,if user attempts perform single signon new tab of browser user logged via sso, or directed directly system without having log system.however, if new browser then, system identifies , treats separate session , requires user enter login credentials.
regards,shavantha
Comments
Post a Comment