I have my HTTPS setup on the load balancer and decrypts and sends raw data to the app servers.
When I hit
https://www.mysite.com/sso/saml it directs to the identity provider under HTTP not HTTPS.
In my authsource:
'default-sp' => array(
'saml:SP',
// The entity ID of this SP.
// Can be NULL/unset, in which case an entity ID is generated based on the metadata URL.
'entityID' => '
https://www.mydomain.com/sso/saml',
// The entity ID of the IdP this should SP should contact.
// Can be NULL/unset, in which case the user will be shown a list of available IdPs.
'idp' => NULL,
// The URL to the discovery service.
// Can be NULL/unset, in which case a builtin discovery service will be used.
'discoURL' => NULL,
'privatekey' => 'mydomain.pem',
'certificate' => 'mydomain.crt',
'RelayState' => '
https://www.mydomain.com/sso/saml',
),
How can I enforce simplesaml to always use HTTPS?