hello,
CAS7 delegated authN via SAML, noticed that CAS signs request, the signature is one of HTTP request parameter, Not part of SAML authnRequest,
this results in Okta responds with 400 bad request, I tried another app that generates siganture inside authnRequest, that works well with Okta.
Is there a way for CAS to keep the signature as part of SAML AuthNRequest? Pac4jHTTPRedirectDeflateEncoder/doEncode() specifically removes the signature, does not have anyway to skip it.
thx!
CAS generated authnRequest during delegated authN to Okta
HTTP request
here is another App generated AuthnRequest that works well with Okta,
== END ==