authN POST question
Mike Flynn
shibbolethlynda at yahoo.com
Thu May 12 11:50:48 EDT 2016
I have a customer trying to connect to my Shibboleth system. In their metadata, they have one endpoint for SSO:
<md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://compass.cudirect.com/account/samlrequest"/>
They require the authN to be signed and sent as POST, not GET. But even with just that one end point, Shib is still sending it as GET:
GET https://compass.cudirect.com/account/samlrequest?SAMLRequest=fVJbT8IwFP4rS99Zty4QbBgJwoMkqAtMH3wxbTlIk66dPZ3Kv3cXL%2FDCY9Pv%0AnjNDUZmaL5pwtFt4bwBD9FUZi7z%2FyEnjLXcCNXIrKkAeFN8t7jecxQmvvQtO%0AOUOiBSL4oJ1dOotNBX4H%2FkMreNpucnIMoUZOKR61jM3J7kWsXEV37VM6A%2BEY%0AIzraqTJaPO5KEq3aGNqKTvCf3nJqgRirZq89qNCLCKVcYwPt0vohP4nWq5y8%0ApvtEZJlMZQbTMbuZymRymEjBDiCnImHjFobYwNpiEDbkhCXpZJSMRykr0zFn%0AU54lLyQqfirearvX9u36HnIAIb8ry2I0VHkGj32NFkDmsy4n74392c7XZcXv%0AuGR%2BMaUHAwLhbFL8m3SE9YyemQ3ONX9o1derwhmtTtHCGPe59CAC5CQldD5Q%0ALs9h%2Fg0%3D%0A&RelayState=cookie%3Ab30ba62e HTTP/1.1
Host: compass.cudirect.com
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.10; rv:46.0) Gecko/20100101 Firefox/46.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, brIs there a way to force this one entity to send as POST instead of GET?
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://shibboleth.net/pipermail/users/attachments/20160512/a70d675f/attachment-0001.html>
More information about the users
mailing list