"sohil.shah(a)jboss.com" wrote : | the SAML token validation between site2 and site1 involves a Trust callback between the federation servers of site1 and site2. | And this trust callback happens directly between the federate server in the backend on the server side, no browser redirection involved? Where does the site2 gets the URL of the issuing site? The SAML token doesn't seem to have that information. Thank you! View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=4163678#... Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&a...