IDP Sending Users to Unsecure HTTP Connection
David E. Newswanger
David_Newswanger at berea.edu
Tue Dec 22 08:13:47 EST 2015
I reconfigured Apache to redirect HTTP to HTTPS and changed the endpoint to point to the HTTPS link. It seems to work now. Thanks!
From: users <users-bounces at shibboleth.net> on behalf of David E. Newswanger <David_Newswanger at berea.edu>
Sent: Monday, December 21, 2015 12:29 PM
To: users at shibboleth.net
Subject: IDP Sending Users to Unsecure HTTP Connection
I recently installed a new service provider. When people go to login via HTTPS, the identity provider authenticates them and then redirects them using HTTP to the home page and they get a security warning saying "The information you have entered on this page will be sent over an insecure connection and could be read by a third party." How do I configure my SP or IdP to redirect authenticated users using HTTPS?
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the users