Hey Folks,
We have sso working with a custom application user base launching a website hosted on IIS nicely, our issue is we want to ensure that the only way they can get to this second site is via the SSO from the first application. So for example they wouldn't be able to just copy / paste the URL from the website and then login directly to that page. Only when the origination is from our first application.
Not sure the best way though I'm sure it's possible.
Thanks!