authN POST question

Mike Flynn shibbolethlynda at
Thu May 12 11:50:48 EDT 2016

I have a customer trying to connect to my Shibboleth system.  In their metadata, they have one endpoint for SSO:
<md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location=""/>
They require the authN to be signed and sent as POST, not GET.  But even with just that one end point, Shib is still sending it as GET:
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.10; rv:46.0) Gecko/20100101 Firefox/46.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, brIs there a way to force this one entity to send as POST instead of GET?
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <>

More information about the users mailing list