I have configured openam as IDP and OpenIg as SP. Open IG protects an application which has links to third party applications which are acting as SP. When i login to application either via sp or IDP initiated, would it allows to perform SSO to the links part of the application. If yes, Would it be possible to control the session timeouts for these applications.
When user access openig application and access one of the application links, let say he spent around 20 mins(defined time out is 30 mins) and can come back to main application and then try to access link to another application.
When user comes again to the first accessed application after let say 10 minutes, he should still be able to use the application without timing out.
And after session timeout on the application, it should redirect the user to login page of the app protected with Open IG. Similarly the same should be applicable to other apps as well.
Please provide me some pointer and any documentation available for such scenarios.