Reusing SAML assertion

Question

I am implementing single sign on with multiple SPs. Here is my basic understanding:&nbsp;
1) Browser(User) requests resource from Service Provider (SP). &nbsp;
2) SP Redirects (with SAML Request) to Identity Provider (IdP - f5 APM).&nbsp;
3) Since it is first login, User gives the (IdP) his/her valid credentials.&nbsp;
4) IdP then redirects Browser (with SAML Response which includes SAML token) to the SP page.&nbsp;&nbsp;
Now let's say I have Service Provider A and Service Provider B. A user has completed the step about for Service Provider A. From service provider A (salesforce.com in my scenario), I have written a server-side method which instantiates a callout to an endpoint on Service Provider B (Sharepoint API). Is it possible to re-use the SAML assertion in this case? I.e. will service provider B trust the backend method?&nbsp;

michael_koyfma1 · Answer

What do you mean by the back-end method? Is the request/callout initiated from Salesforce.com to SP B? I really would like to see a more detailed description of the flow and the use case here. Thanks!

michael_koyfman · Answer

What do you mean by the back-end method? Is the request/callout initiated from Salesforce.com to SP B? I really would like to see a more detailed description of the flow and the use case here. Thanks!

tharrington_184 · Answer

Yes, the request is initiated from the Salesforce.com server to SP B.

tharrington_184 · Answer

Yes, the request is initiated from the Salesforce.com server to SP B.

michael_koyfman · Answer

Unfortunately, it does not look like it will be possible to achieve this.

Forum Discussion

Reusing SAML assertion

6 Replies

Recent Discussions

Pricing when used with aws waf

F5 Rseries R2600 Tenant sizing

iRule help masking IBM host URL/URI

Need advise to setup a policy on F5

Advise on setting up IRULE

Related Content

BIG-IP VE license revocation/reuse

Enable SAML Service Provider on F5 Distributed Cloud Application

AD attributes in SAML assertion

Error Encrypting a SAML Assertion from APM

APM Cookbook: SAML IdP Chaining