My name is Felipe Cardoso and I am part of the IT team at LIneA (Interinstitutional e-Astronomy Laboratory). LIneA is a non-profit organization that operates in the international academic ecosystem, supporting Brazilian participation in astronomical surveys and managing large volumes of data.

Currently, our infrastructure includes services that are integrated with authentication mechanisms such as social login (Google, Github, CILogon) and federated login (SAML) through an instance of the SaToSa proxy. In our case, we have some services that implement SAML, and thus we use the SAML Mirror frontend plugin to allow the mentioned authentication backends to serve the services' users.

We would like to implement the concept of Single Sign-On (SSO) in our services, but we are facing challenges due to our limited knowledge of SaToSa. Could you please inform us if it is possible to configure SSO functionality in SaToSa? Additionally, is there anyone with a similar scenario to ours who could provide guidance on the way forward?