When a user wants to purchase my saas, AWS spawns a copy of my app and includes a token in the header. I need to use that token to call ResolveCustomer(). But AWS is not calling my app directly. Instead, due to security needs AWS spawns a copy of OneLogin/SAML where it checks the users authentication. After the authentication, OneLogin/SAML spawns my application. The problem is that OneLogin is not forwarding the token to my application. So my app cannot run ResolveCustomer() to continue the handshake between AWS and my App. OneLogin is running in a different process than my application.
I have tried stuffing the token into a cookie for my application to use but there are limitations on sending two cookies at once in PHP. So, besides using a cookie, is there any AWS sdk function that will allow my app to request the cookie, rather than through the POST?