Request missing SAMLResponse or TARGET form parameters.

Cantor, Scott cantor.2 at
Wed May 4 20:47:46 EDT 2016

On 5/4/16, 8:38 PM, "users on behalf of Florin Stingaciu" <users-bounces at on behalf of florin.stingaciu at> wrote:

>If I navigate to <>, I'm redirected to the IDP login page. I used a tracer to identify what's going on and it seems as though the IDP redirects me to make a POST request to
> with the following SAML assertion:

That's a SAML 1.1 endpoint. The response you posted is a SAML 2 message. Ergo, it doesn't work. Your metadata is apparently wrong or you have some seriously screwed up interactions happening.

>However, when looking through the shibd logs, I find the following in the transaction logs:

Pretty sure that's indicative of a bug, but nobody has filed anything so I haven't spent any time digging into the error handling to see what it's doing when the protocol streams get crossed, and in the end it's not that important as long as it doesn't expose any resources. The log makes no sense though, so I assume there's a bug.

-- Scott

More information about the users mailing list