If you are unable to create a new account, please email support@bspsoftware.com

 

SSO - Loading login application in the background

Started by gohabsgo, 17 Sep 2019 10:51:53 AM

Previous topic - Next topic

gohabsgo

Hey Folks,
We have an internal application that users login to and then when they would like to explore Cognos reports they click a link which loads a page with a constructed URL which then launches our SSO application that opens up Cognos and pops the user in.

Internal app -> SSO Application -> Cognos

The issue we're seeing is that the intermediate step that calls the SSO application with the constructed URL pops up momentarily before it launches Cognos and authenticates the user.  Now in theory if someone stops their browser process and captures that URL, it could be shared with other users who could then just use it to get into our Cognos solution as the originating user.

This isn't really a Cognos question per se, but was hoping that someone might have a similar SSO solution that might point me to a solution.  I was thinking that if we could call the SSO application page in the background it would prevent this but I'm not a web developer so not sure if that's possible or not.

Any thoughts?

Thanks!