Dear All,
I am new to SAML and I have a confusion which I would like to clear with your help.
I like to know, how webSSO works with two SPS?
1- User accesses a resource at first SP
2- First SP creates SAML Authentication request and redirect to IDP.
3- IDP authenticates the user, create session and sends the SAML response containing SAML assertion to first SP
4- First SP validates the SAML assertion, create local session and grant user access
The above steps are clear to me but what is the flow of passing this SAML assertion to second SP so that SSO can be acheived?