[shib_auth] Linking with arguments
Markus Broman
brom at dsv.su.se
Fri Apr 8 11:46:15 CEST 2011
Hi!
First of all, thanks for all your help with my arguments -problem.
I have tried both of the solutions and if I enable passive authentication with the dev-f-genurl, linking works perfect and I get redirected to the page I'm heading for. This is the case if I'm already authenticated with shibboleth elsewhere.
If I'm not authenticated and go to the link I get some kind of error:
opensaml::FatalProfileException at (https://example.com/Shibboleth.sso/SAML2/POST)
SAML response contained an error.
Error from identity provider:
Status: urn:oasis:names:tc:SAML:2.0:status:Responder
Sub-Status: urn:oasis:names:tc:SAML:2.0:status:NoPassive
On the other hand, if I don't use passive authentication and instead use the redirect snippet Shafter posted earlier, it seems to work in both cases! When I'm authenticated elsewhere and when I'm not. So thank you very much for that!
Maybe there could be an option in Shibboleth authentication to insert this code or something like it into the page.tpl?
The only thing thats not perfect (like Shafter mentioned) is that the url is not a clean url. But this is not a big problem for me.
Will the dev-f-genurl changes be committed to a maintained version of Shibboleth authentication any time soon or do you think it's safe to use this version on a production site?
Thanks again!
// Markus
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://listserv.niif.hu/pipermail/shib_auth/attachments/20110408/02cd6224/attachment.htm>
More information about the shib_auth
mailing list