Last tested: Aug 31, 2020

Some SSO providers have settings that do not require a user to click the Authenticate button when logging back into an application. This can create some significant confusion and appear as a security issue, but is most likely caused by an IdP setting. For example, when using OIDC with AuthO there is a setting enabled by default called Enable Seamless SSO that will cause this.