ApplicationOverride and ECP
Cantor, Scott
cantor.2 at osu.edu
Tue Nov 29 18:00:59 GMT 2011
On 11/29/11 12:32 PM, "Scott Koranda" <skoranda at gmail.com> wrote:
>
>With more testing I have found that if in the <Sessions>
>element inside of the <ApplicationOverride> element I include
>this single child element
>
><md:AssertionConsumerService Location="/SAML2/ECP" index="4"
>Binding="urn:oasis:names:tc:SAML:2.0:bindings:PAOS"/>
>
>the issue goes away.
>
>Please let me know if I can assist with debugging in a
>specific way.
If adding the ACS is the fix, then I would suspect maybe there's a bug in
the logic that looks up the PAOS binding ACS to use. I thought that
error'd out, not fell back to browser, but with that as a hint and
something to reproduce, I should be able to track it down.
Can you please file a bug?
It should never be necessary to repeat any of the endpoint information in
an override, that's definitely a bug.
-- Scott
More information about the users
mailing list