After logging in to Pega with respective SSO credentials, How to validate SSO Authentication again performing some action.
We have a below requirement.
1. User logging into the application by providing SSO credentials in SSO enabled URL(Like prweb/sso)
2. Once user login into the application through SAML Auth Service and accessing the application.
3. User on clicking on "Approve" button,Again we need to verify whether the user present in Client domain(ex: GE employee or not).
How we will check whether user present in GE domain.
Tried by putting remote tracer by checking the requestor, But able to trace activity "pySAMLWebSSOAuthenticationActivity", when user is valid only.
If we give wrong credentails, getting blank in tracer. So i thought it is checking only SAML Auth service to validate whether the user is valid or not.
But SAML Auth service is calling through web.xml when we give the URL ends with prweb/sso.
Question: How we will validate whether the user in client domain or not?
During the authentication process, if you can get the information whether the operator is present in client domain or not, you can keep the attribute read during login like any other attributes, and use it later in the application processing.