By: Neemesh Patel user 22 Mar 2016 at 10:02 a.m. CDT

1 Response
Neemesh Patel gravatar
Hello, We are looking to setup Gluu as an IdP in order to connected to some different service providers. One service provider only supports SAML, and another one only supports openID connect. I just wanted to verify it was possible with Gluu to allow connections to both service providers (again, one is SAML only and one is openID connect only) via one single sign-on? I just wanted to confirm that when a user signs in they won't have to sign in again when switching between the two service providers or that we are only able to configure Gluu to use either SAML or openID connect, but not both. Thanks

By William Lowe user 22 Mar 2016 at 10:26 a.m. CDT

William Lowe gravatar
Hi Neemesh, The Gluu Server makes use of a SAML login handler to push all authentications to OpenID Connect. So if someone authenticates first at a SAML site, they get both an OpenID Connect and a SAML session. If they authenticate first to an OpenID Connect site, they only get an OIDC session. However, when they hit a SAML site afterwards, the Gluu Server recognizes that they already have an OIDC session and simply provides a SAML session without authentication. Thanks, Will