I am trying to implement IDP initiated SSO. I have created a “temp” app on Okta (IDP). Using Okta as the IDP I can login and get redirected to Auth0 (SP). Auth0 will have a successful login recorded in the logs and redirect me to my website.
Here is my issue, I can see the POST request from Auth0 with the SAML assertion but I cannot get logged into my web app. I am lost on what to do at this point.
- Should the Auth0 POST be handled by a web server? For example, ExpressJs or NGINX.
- What do I do with the assertion?
- How do I get logged into my app?