Login to a third party SAML app that's in an iFrame

Cantor, Scott cantor.2 at osu.edu
Mon Aug 4 13:49:43 EDT 2014


On 8/4/14, 1:31 PM, "Eric Goodman" <Eric.Goodman at ucop.edu> wrote:

>I was afraid that was going to be the answer. And I think I found the
>thread you are talking about?:

No, that's not the one.

>I should clarify that I'm really not interested in displaying the IdP
>login screen in an iframe, just the content of the authenticated
>application. I don't know if that makes a difference.

No, not unless the application has some way to externalize the SSO step
outside the frame.

>Would the IdP still fight out of the iframe if the authentication is done
>with "isPassive=True"? I think I can assume the user will have a valid
>IdP login before the iframe is displayed, but I suspect the IdP doesn't
>necessarily make this distinction.

It might work, I don't know.

-- Scott



More information about the users mailing list