Comment 2 for bug 1459686

The last step in the doc is to retrieve the SAML assertion from the IdP Keystone. My idea was to have a next step with two requests to the SP: initial step to send the assertion and the GET to retrieve the unscoped token.