IDP-Proxy trying to go forward to remote IDP again instead of return to requesting SP
16 views
Skip to first unread message
andrei...@gmail.com
Mar 16, 2018, 11:34:12 AM3/16/18
to SimpleSAMLphp
Hello, So I currently have the following scenario
SP (Keycloak in this case) -> IDP (hostedIdp SSP) -> SP(authsources.php) -> Remote IDP
(1 ) -> (2) -> (3) -> (4)
I'm able to perform the run in one way, but when successfully authenticate with the remote idp its returning back to the SP that is seeking the Remote IDP again, complaining about certData, if given, it will try to auth against the remote IDP again, when it should pass the response back to the caller hosted IDP and return back to the SP and this should be the one making the assertion.
the idp defined under authsources.php is the saml20-remote-idp.php , the HOSTED-IDP points to the authsources defined SP, and the SP remote is pointing to the IDP.
What could be the problem, and why is it redirecting back to the remote IDP instead of the HOSTED IDP?
SP (Keycloak in this case) -> IDP (hostedIdp SSP) -> SP(authsources.php) -> Remote IDP
(1 ) -> (2) -> (3) -> (4)
I'm able to perform the run in one way, but when successfully authenticate with the remote idp its returning back to the SP that is seeking the Remote IDP again, complaining about certData, if given, it will try to auth against the remote IDP again, when it should pass the response back to the caller hosted IDP and return back to the SP and this should be the one making the assertion.
the idp defined under authsources.php is the saml20-remote-idp.php , the HOSTED-IDP points to the authsources defined SP, and the SP remote is pointing to the IDP.
What could be the problem, and why is it redirecting back to the remote IDP instead of the HOSTED IDP?
Reply all
Reply to author
Forward
0 new messages