Re: IDP Sending Users to Unsecure HTTP Connection
Robo Burned
robo at list.ru
Tue Dec 22 03:21:22 EST 2015
The url where IdP will redirect user is specified in AssertionConsumerServiceURL attribute of samlp:AuthnRequest that SP sends to IdP. So you should check how the request is being generated on SP side. Also you have to add corresponding AssertionConsumerService element with the same Location attribute to SP metadata.
>Понедельник, 21 декабря 2015, 18:29 UTC от "David E. Newswanger" <David_Newswanger at berea.edu>:
>
>I recently installed a new service provider. When people go to login via HTTPS, the identity provider authenticates them and then redirects them using HTTP to the home page and they get a security warning saying "The information you have entered on this
page will be sent over an insecure connection and could be read by a third party." How do I configure my SP or IdP to redirect authenticated users using HTTPS?
Robo Burned
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://shibboleth.net/pipermail/users/attachments/20151222/3171015e/attachment.html>
More information about the users
mailing list