Using OpenID Connect mechanism with SSO is very similar to general purpose OpenID Connect authentication flow. Just append parameters sso_token= and prompt=none parameters to the OpenID authentication URL, such as https://<tis-hostname>/openid/auth. These parameters ensure that user will be signed in without any interaction or confirmation dialogues (even in case of errors).