We've setup an Okta SAML chicklet for Forms 10.4.x. The Okta SAML assertion is passed to our LFDS server, and then LFDS parses the assertion against our Okta - Laserfiche Forms IdP. The Okta - Laserfiche Forms IdP proxies the assertion against our Active Directory provider using SID, so the user can login. This works great!
On the LFDS landing page, however, we can't seem to configure the SAML button to direct the user back to Okta to re-auth? We're thinking this is a combination of settings in the Okta - Laserfiche Forms IdP and an STS site, but are unsure how to set this up? Has anybody done this, or point us in the right direction?
It's interesting because Okta provides a deep link for auth'ing against an App (something of the format: https://********.okta.com/home/*********_laserficheformsdevsso_1/0oa1goh1ea1UBXbPe1d8/aln1goh7r1egoEBkA1d8). So this would work if I could make the SAML button use the deep link.
Any help would be appreciated, thanks!