Speaking of service-now...
cantor.2 at osu.edu
Wed Sep 14 19:37:11 BST 2011
On 9/14/11 2:25 PM, "James Bardin" <jbardin at bu.edu> wrote:
>On Wed, Sep 14, 2011 at 1:32 PM, Cantor, Scott <cantor.2 at osu.edu> wrote:
>> It's all coming back to me from when I set this up with the old IdP. I
>> to use a frame-busting script in between their SP and the IdP to relay
>> authn request along.
>Where do you insert your script in the authentication flow?
You tell it your SSO service is the CGI script, and then you have the
script bust the frame and reattach the query string to your actual SSO
service. It worked with Shibboleth-style requests, I imagine it should
work ok with SAML 2 redirects.
More information about the users