+ Start a Discussion
garybgaryb 

Service provider initiated login & Internet Explorer

Hi all,

 

We've implemented federated SSO with SAML 2.0 and identity provider initiated login is working as it should. However, we're seeing an issue with service provider initiated login.

 

This happens when a user tries to visit a specific salesforce page such as https://cs3.salesforce.com/home/home.jsp and is not authenticated (for example, they have logged out). If the user has used identity provider initiated login, they have a cookie stored on their machine and rather than being shown the salesforce login screen, the browser is redirected to the identity provider (and back to salesforce once authenticated).

 

This works as expected in Chrome and Firefox. Internet Explorer works for the most part, but there's one annoying wrinkle. If the user uses the "Log out" link in Salesforce and once logged out, tries to access a specific salesforce page (such as the home page link above) within the same tab, the user sees the "You are now logged out" screen and is returned to a salesforce login screen.

 

If the user tries to access the page in a new tab (or closes & reopens the browser), the problem does not occur.

 

Has anyone else seen this and if so, could you share ways of dealing with the issue?

 

Thanks in advance!