Challenging multi-part question.
how can I add SSO for the first time we request to this page and not have it apply to the subsequent request to the same URI?
I suppose this depends on how it all works, but you could potentially track access to specific URIs and issue a WEBSSO::disable command as appropriate.
Also when I want to kill the session and logout how can I accomplish this since it will still flag off the same URI? There are POST parameters passed when clicking on these links... is there a way to inspect the post parameters for this configuration instead of using just the URI?
You could collect the payload on each HTTP request (assuming a POST message and some specific URI) and parse out the parameters in the HTTP_REQUEST_DATA event. This all still happens before the access events, but as long as the client is also passing an APM session token, you can write into the session as needed.