I'm tasked with developing an SSO system with SAML. I have to login to the identity provider (via a mobile app) and redirect to my site after authentication.
After some research I think understand the interaction between a Service Provider and an ID Provider and how a user's identity is confirmed.
But what happens when I redirect the user to another Service Provider? How can I transfer the authenticated user's identity to my site without login once again with Identity Provider.
Must I send the SAML assertion tokens along with the redirect request?