Need to modify AuthnContextClassRef in ExternalAuth
cantor.2 at osu.edu
Tue Dec 22 11:43:47 EST 2015
On 12/22/15, 11:40 AM, "users on behalf of Stefan Santesson" <users-bounces at shibboleth.net on behalf of stefan at aaa-sec.com> wrote:
>No, the external servlet is compiled to a jar-with-dependencies.jar and added to edit-webapp/WEB-INF/lib and included from the IdP web.xml
>Common dependencies with IdP is declared as “provided”, like hibernate and OpenSAML v3 since it shares the IdP class loader.
Ok. I'm running out of ideas then, and since you're not using real Java, my only suggestion is probably trying that (and if the Tomcat isn't a real one from Apache, that too).
But I'll see what the logs show.
I would also, I guess, wonder if you can verify with a trace that the JSESSIONID cookie is making it to the server in all of the requests. That's really the linchpin here.
More information about the users