--- title: CdSsoContext description: Provides the cross-domain SSO properties for the CDSSO token, the user ID of the session, and the full claims set. When the CrossDomainSingleSignOnFilter processes a request, it injects the information in this context. component: pinggateway version: 2026 page_id: pinggateway:reference:CdSsoContext canonical_url: https://docs.pingidentity.com/pinggateway/2026/reference/CdSsoContext.html revdate: 2025-06-02T18:01:47Z section_ids: CdSsoContext-properties: Properties CdSsoContext-moreinfo: More information --- # CdSsoContext Provides the cross-domain SSO properties for the CDSSO token, the user ID of the session, and the full claims set. When the [CrossDomainSingleSignOnFilter](CrossDomainSingleSignOnFilter.html) processes a request, it injects the information in this context. ## Properties The context is named `cdsso`, and is accessible at `${contexts.cdsso}`. The context has the following properties: * `"claimsSet"`: *[org.forgerock.json.jose.jwt.JwtClaimsSet](../_attachments/apidocs/org/forgerock/json/jose/jwt/JwtClaimsSet.html)* Full JwtClaimsSet for the identity of the authenticated user. Cannot be null. Access claims as follows: * Claims with a getter by using the property name. For example, access `getSubject` with `contexts.cdsso.claimsSet.subject`. * All other claims by using the `getClaim` method. For example, access `subname` with `contexts.cdsso.claimsSet.getClaim('subname')`. * `"cookieInfo"`: *org.forgerock.openig.http.protocol.CookieBuilder* Configuration data for the CDSSO authentication cookie, with the following attributes: * `name`: Cookie name (string) * `domain`: (Optional) Cookie domain (string) * `path`: Cookie path (string) No attribute can be null. * `"redirectEndpoint"`: *[java.lang.String](https://docs.oracle.com/en/java/javase/25/docs/api/java.base/java/lang/String.html)* Redirect endpoint URI configured for communication with AM. Cannot be null. * `"sessionUid"`: *[java.lang.String](https://docs.oracle.com/en/java/javase/25/docs/api/java.base/java/lang/String.html)* Universal session ID. Cannot be null. * `"token"`: *[java.lang.String](https://docs.oracle.com/en/java/javase/25/docs/api/java.base/java/lang/String.html)* Value of the CDSSO token. Cannot be null. ## More information [org.forgerock.openig.openam.CdSsoContext](../_attachments/apidocs/org/forgerock/openig/openam/CdSsoContext.html)