We are supporting a multi-tenant application. Most of the time, there is substantial load on our application. Our technology stack involves:
Running on Apache/2.2.15 (Unix) with Passenger(3.0.11).
We have configured shibboleth2 configuration to use the StorageService type="Memory"
We have 2-3 application servers running at any point in time.
Off late, many of our clients have complained that they are unable to login via Shibboleth SSO. On debugging, what we observed is that, the issue is more frequently occurring on Chrome browser on Mac OS.
In the Browser Network window, we see that the user is not treated as logged in, even after successful authentication at IDP. If the user clicks the 'Sign in' link (which redirects to