SAML SSO authentication doesn't work as SimpleSAMLphp generates non-existent AssertionConsumerServiceURL
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
Mahara |
Confirmed
|
Undecided
|
Unassigned |
Bug Description
Wrong AssertionConsum
Mahara 16.10.3 and CentOS Linux release 7.2
Since 16.10.x release, the SimpleSAMLphp library is included as a managed dependency with the Mahara codebase.
We noticed that before sending an AuthRequest to an IDP, it generates wrong AssertionConsum
In our case, it generates https:/
instead of https:/
We tracked down that it is generated using 'baseurlpath' => 'simplesaml/' defined in htdocs/
and
$ar->setAsserti
As a workaround, we have hacked the SimpleSAMLphp library for generating correct AssertionConsum
description: | updated |
Changed in mahara: | |
milestone: | 17.10.0 → 18.04.0 |
Hi Yaju,
Thanks for that info. Our 16.10 sites do work with the new SAML setup. We'll need to investigate this further.
Cheers
Kristina