institutions using Shibboleth to authenticate Peoplesoft
Liam Hoekenga
liamr at umich.edu
Tue Jul 28 20:11:07 UTC 2020
>
> Actually, let me dig in there, maybe I have the flow wrong. Does the
> browser come back to Peoplesoft at that point? I was assuming it was going
> to SciQuest.
>
SciQuest sends a POST back to Peoplesoft.
The SP in front of Peoplesoft decides to initiate a new session (currently
using Redirect, but we tried POST too).
The IDP POSTs back to /Shibboleth.sso/SAML2/POST.
The SP then apparently does a GET for the Peoplesoft content.
Oracle says that request should have been a POST (presumably with data that
came in from SciQuest) and that's why we're getting an empty page
I believe that we're configured to store POST data in shared memory (the
postData settings in the Session element)
If it's going back and forth, and it's the PS session that's missing, then
> that could absolutely be an issue with the SP (but noting that we added
> SameSite workarounds in 3.1).
>
I'm trying to find out what version of the SP we're running. It may be
3.0, not 3.1.
Liam
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://shibboleth.net/pipermail/users/attachments/20200728/0406a406/attachment.htm>
More information about the users
mailing list