I have set up our own gitlab server and use it as oauth IDP. the steps is :
- open my Application and click GitLab as an IDP for an OAuth login.
- my Application redirects you to GitLab
- login gitlab. it redirects you to your App and the redirect contains a token which your app then can use to check validity of the login.
now I want to do a new feature:
- the user login gitlab first
- the user open my application in the same browser.
- my application can use the gitlab’s cookie or session or token to login
I want to find some cookie which may contain some sso token. so my application can retrieve it from cookie and try to validate via gitlab. but seems that there is not cookie except _gitlab_session
so my questions is :
- is there any sso token I can use for other application SSO login after login in gitlab ?
- is there a api to validate the cookie/token ?