Forum Discussion

Lohit's avatar
Lohit
Icon for Nimbostratus rankNimbostratus
May 16, 2025
  1. The client accesses a protected business application without first authenticating to the IdP or to the application server.
  2. The application server intercepts the request based on configured filter definitions.
  3. The application server stores the value of the original request URL on a cookie called WasSamlSpReqUrl.
  4. The application server redirects the client to the IdP login page that is configured on the sso_<id>.sp.login.error.page custom property.
  5. Authentication continues following the IdP-initiated SSO flow.
    1. The user authenticates to the IdP.
    2. The IdP redirects the client to the Assertion Consumer Service (ACS) (https://abc.com/samlsps/acs) on the WebSphere Application Server by sending a SAML response over HTTP POST.
    3. The application server processes the SAML response and creates a security context.
    4. The application server adds an LTPA cookie to the HTTP response.
  6. The application server uses the value of the WasSamlSpReqUrl cookie to redirect the client to the original request URL. (https://abc.com/maximo)
  • Injeyan_Kostas's avatar
    Injeyan_Kostas
    Icon for Nacreous rankNacreous
    May 16, 2025

    ok but what does /maximo expects to let you in?
    the LTPA cookie?