Hello,
I have already done Azure Active Directory SAML single sign on. Below url is the my last completed work for SSO.
https://www.freelancer.com/projects/php/azure-sso-login-with-coldfusion/
your php app should be https. you will add user on your active directory. if user have already account of Microsoft Live then he can login else user will receive email to update profile.
user open your php application page which redirect to Azure Active Directory if user already logged in then it will response encoded data.
our script will decode data and check login is success or not. if success then it will give user email, name etc so you can store in session for validation.
Must : In order to start the project I need $30 Advance
Thanks,
Daya