Implement SSO flow for authentication. I'm a newbee here and cannot get some places. I tried to implement service provider initiated flow. And it looks like this:
- User clicks on button on my frontend app to authenticate by one
federation
. - User redirects to federation form and choose required IdP for authentication.
- After clicking on IdP button user redirects to special auth form on some IdP and enter their credentials.
- User click there on
Log in
and redirected to our server withSAMLResponse
.
So, it looks good but I have one required param for authentication that is necessary for my system but not for IdP. It means that I need somehow to send this param to IdP and IdP should return it without any changes. I tried to read a lot info how to do it but cannot find nothing. I saw param called RelayState
that can be set to URL of frontend app and after authentication on IdP it will return to my server without changes.
Basically my question is how I can use IdP as a Proxy?