SSO redirects (302) pose a common recurring issue when SSO filters intercept ZK's AJAX requests.
While the XMLHttpRequest (XHR) API doesn't provide a mechanism to handle redirects at client side, the modern fetch API does ->
https://fetch.spec.whatwg.org/#concept-request-redirect-mode describes that redirects can be treated like *error*s or handled *manual*ly at client side
Replacing the older XHR with the new fetch() (or a polyfill) would open a way for more intuitive way when dealing with SSO solutions (at least for modern browsers)
NOTE: the API is still marked as experimental (2018-12) so we should observe this API and decide when to integrate it (or use a polyfill as a fallback)