Pass authentication to another application

Peter Schober peter.schober at
Tue Sep 18 04:27:05 EDT 2018

* Rob Brooks <rbrooks at> [2018-09-17 22:52]:
> Hello, I use shibboleth SP to authenticate against a PING Federated IdP
> (not in my control) for my web application.  I want to provide a link in my
> application that then passes this authentication on to another
> application.  Can you help me to understand this process flow?  The 3rd
> party application that needs authentication has its own SSO SP (not sure of
> product) and I have the ear of their developers and can suggest workflow.
> The Ping Federated server would be harder to implement change with.

Sounds to me that other application should simply become yet another
SAML SP federated with the same (or any other) SAML IDP.
Does not change your existing SP and does not require proxying.

More information about the users mailing list