saml-dev message

Subject: Re: [saml-dev] SSO multiple SPs

From: Peter Schober <peter.schober@univie.ac.at>
To: saml-dev@lists.oasis-open.org
Date: Fri, 14 Mar 2014 10:00:24 +0100

* Security Developer <security.developer22@gmail.com> [2014-03-14 07:41]:
> How does IDP know that it should not authenticate the user when SAML
> authentication request comes from second SP?

SSO is a function of the IDP establishing a session (via whatever
means) with the subject's HTTP user agent.
So which SP (second, first, any other) doesn't factor into it.
As Paul pointed out, the (any) authentication request can influence
this behaviour, though.
-peter

References:
- SSO multiple SPs
  - From: Security Developer <security.developer22@gmail.com>
- Re: [saml-dev] SSO multiple SPs
  - From: Paul Hethmon <paul.hethmon@clareitysecurity.com>
- Re: [saml-dev] SSO multiple SPs
  - From: Paul Hethmon <paul.hethmon@clareitysecurity.com>
- Re: [saml-dev] SSO multiple SPs
  - From: Security Developer <security.developer22@gmail.com>