Hi Andrew. No SSOToken with this phase. This is a simple HTTPRequest call, read the response, look for the element ApplicationConnectionId, if it finds it parse out the value and direct the user to the next screen. If credentials are incorrect, respond from SMP is something like:
<error>....
<message xml:lang='en-US'>UNAUTHORIZED</message>
</error>
So my parsing for ApplicationConnectionId would essentially fail.
Thanks for the response.
J