We have a web application on azure AD, we are following the below mentioned life-cycle for SSO,
1. User visits our web page http://portal.myedutor.com/users/sign_in
2. User clicks on "Login with Microsoft credentials"
3. User signs in using O365 account
4. Now user has an active session with our application
5. User visits http://portal.office.com and signs in using same credentials
6. Within a couple of minutes user sees the "IGNITOR" app in "My Apps"
7. Clicking on the app user is taken to the homepage of our application
Now the problem we are facing is, once the user clicks on our app in step-7 he is again asked to login, we are not able to send any session information on app click. We are using open ID protocol for SSO.
