On Wed, 2006-11-01 at 18:20 +0000, Martin Atkins wrote: > You are correct that this only works in the presence of an existing > session and, for most IdPs, only if the user has allowed that site to > authenticate without express permission. Ok, thanks for clarifying. johannes