How can I have SSO with multiple login forms?
The most known SSO workflows require the Identity provider to provide the login page/form, for example Google's Authentication for its services.
An example for that is the: Simple SAML SSO Workflow
But in my case, I have a bunch of apps that each has its own login form. Therefore, having to perform a GET request to fetch the common login form breaks the UI experience. In my case I already have implemented forms for login.
Is there a workflow that will allow me to maintain the login page but still have a common method for SSO/common authentication mechanism?
An approach to this problem is double auth:
I mean both apps and user have credentials therefore during login I just send the app credentials, alongside the user one and I get a common bearer token. But I have apps that are completely in Javascript or in Android, so app credentials may be shipped to the end user as well.
Is there a known "battle-tested" mechanism to allow me a common authentication over Http without having to provide a common form?