Hello, So I currently have the following scenario
SP (Keycloak in this case) -> IDP (hostedIdp SSP) -> SP(authsources.php) -> Remote IDP
(1 ) -> (2) -> (3) -> (4)
I'm able to perform the run in one way, but when successfully authenticate with the remote idp its returning back to the SP that is seeking the Remote IDP again, complaining about certData, if given, it will try to auth against the remote IDP again, when it should pass the response back to the caller hosted IDP and return back to the SP and this should be the one making the assertion.
the idp defined under authsources.php is the saml20-remote-idp.php , the HOSTED-IDP points to the authsources defined SP, and the SP remote is pointing to the IDP.
What could be the problem, and why is it redirecting back to the remote IDP instead of the HOSTED IDP?