Identify user in Multi-tenant with cleared sessions #408
Description
Hello,
I'm implementing an application that supports multiple tenants, with the metadata for each tenant stored in a database. I'm using the SAML_CONFIG_LOADER to dynamically load the SAML configuration based on the user.
When redirecting to the login page, I fetch the user's metadata from the database based on the user data I stored in the session. However, upon receiving the SAML response at the ACS endpoint, the session is cleared, and the user is not yet authorized. This means I cannot access the SAML configuration needed for authentication.
How can I retrieve the user identity (email will be enough) from the SAML response before authorization, considering that the session is cleared and the user is not identifiable at the ACS endpoint?
Thanks