Query string passing
Mike Flynn
shibbolethlynda at yahoo.com
Thu Nov 17 22:36:25 GMT 2011
So, just to clarify, ONLY target will pass through?
________________________________
From: "Cantor, Scott" <cantor.2 at osu.edu>
To: "users at shibboleth.net" <users at shibboleth.net>
Sent: Thursday, November 17, 2011 2:22 PM
Subject: Re: Query string passing
On 11/17/11 4:46 PM, "Mike Flynn" <shibbolethlynda at yahoo.com> wrote:
>I am running Shibboleth 2.3.1 x64 SP on Win 2008 with IIS7. When I have
>an Idp authenticate to me, they will hit a URL similar to this:
>
>https://shib.lynda.com/Shibboleth.sso/InCommon?providerId=[Insert
>EntityID here]&target=https://shib.lynda.com/InCommon
Preferably entityID, not providerId.
>If I add a data element as part of the query string - Say something like
>this:
>
>https://shib.lynda.com/Shibboleth.sso/InCommon?providerId=[Insert
>EntityID here]&target=https://shib.lynda.com/InCommon&CID=54635643
>
>Would that additional query string parameter get passed to my protected
>resource?
Whatever you set target to will be recovered. But you have to URL encode
it, so your specific example won't work unless you fix that.
-- Scott
--
To unsubscribe from this list send an email to users-unsubscribe at shibboleth.net
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://shibboleth.net/pipermail/users/attachments/20111117/e84dded8/attachment.html
More information about the users
mailing list