This documentation is for WSO2 Identity Server 5.6.0. View documentation for the latest release.
Page Comparison - Customizing Login Pages for Service Providers (v.2 vs v.3) - WSO2 Identity Server 5.6.0 - WSO2 Documentation

All docs This doc

Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

When a request comes to the default login page, you can see several parameters being passed in the address bar. For this customization, the focus is on the following two parameters: 

  • sessionDataKey: This is an identifier used by the Identity Server to maintain state information related to this particular request by the service provider.

    Note

    Note: The 'sessionDataKey' query parameter is used to coordinate the request state across components participating in the request flow. It does not correlate with the user session. Furthermore, the request state maintained against the 'sessionDataKey' parameter value is cleared by each participating component at the end of request flow. This means that even if an external party grabs the 'sessionDataKey' they will not be able to get into the authentication sequence, as the user session is not associated with that key.

  • relyingParty: This is the value we gave for the "Issuer" field when we registered the SAML2 SSO service provider (e.g., travelocity.com). This value is used to display different login pages to different service providers.

...