Reputation: 7592
WsFederation to SSO parameters (openId)
This is current architecture for authentication with openId with custom SSO.
I can bypass openId(identity server) screen towards 3rd party sso with acr_value parameter:
context.ProtocolMessage.SetParameter("acr_values", "idp:Federation").Value);
I have an issues how to bypass on the way back. I know I have a wreply field inside of WsFederationAuthenticationOptions class:
Wreply = "https://localhost:44300/core/wsfed"
This is openId identity server, to where custom SSO redirects after authorization granted.
My issue is the screen on openId layer (Please wait...). How to bypass this screen? Do I have to set up settings on openId layer or should I expect some parameter from custom SSO, like when I sent acr_values on inital request towards openId layer?
Upvotes: 0
Views: 245
Answers (1)
Reputation: 5598
You cannot remove the "Please wait..." screen as it is required to handle redirection upon successful authentication using an external identity provider (your SSO 3rd party). The external identity provider will redirect back to IdentityServer, but then IdentityServer needs a way to redirect back to your application.
If you do not like the message or style, you can override the html, see: authorizeresponse.html.
Upvotes: 1
Related Questions
- Wso2 Identity Server Adaptive Authentication with Federation
- IdentityServer4 multiple WSFederation-providers cause an exception
- IdentityServer4 as WSFederation-client with .Net Core WSFederation preview2
- WsFederation authentication in Service Fabric Owin Pipeline not working
- WSO2 Idp initiated SSO
- OpenID based SSO with WSO2 Identity Server
- Create a custom WS-Federation Identity Provider using a WCF service
- Authenticate to STS by Issued Token
- Creating a WS-Federation Identity provider using OpenAM
- Windows Identity Foundation- IdentityProvider initiated SSO