## Expected behavior If connecting for the first time to a SAML/OpenID SP (service provider, hosting any web application), login prompt appears (oxauth). if authenticated correctly, browser redirection to the SP application. If already authenticated, direct redirection to the SP application (default SSO behavior) ## Actual behavior Depending on how the SP you connect first (the one redirecting you to the login prompt) is integrated into GLUU (OpenID/SAML), the behavior is different. If the initial authentication was on a SAML SP, SSO works as expected on SAML and OpenID configured SPs. But if the first authentication was on a OpenID SP, it works as expected for other OpenID SPs but connecting to a SAML SPs for the first time you get redirected to the login prompt. After authenticated again, SAML and OpenID works as expected. ## Example Let's say we have two service providers (SP), one uses GLUU SSO with OpenID (SP1) and the other one with SAML (SP2). I open the browser, go to SP2, make the initial SSO login, open a second window and go to SP1. The automatic SSO login works as expected. Close the browser, reopen it and go to SP1, make the initial SSO login, open a second window and go to SP2. You then get automatically redirected to the initial SSO login page **again**. After authentication SSO works as expected. *Simply summarized:* - Initial login on SAML SP -> Everything works as expected - Initial login on OpenID SP -> Other OpenID SPs work as expected, SAML SPs requires another login via oxauth ## Questions Is this a well know problem? Can I provide you any specific logs, in case you want to investigate this behavior.