AccessControl behaviour

Previous Topic Next Topic
classic Classic list List threaded Threaded
1 message Options
Reply | Threaded
Open this post in threaded view

AccessControl behaviour


We have this configuration in shibboleth2.xml :

<RequestMapper type="Native">
  <RequestMap applicationId="default">
    <Host name="" authType="shibboleth" requireSession="true">
          <Rule require="identifiant">user1</Rule>
          <Rule require="identifiant">user2</Rule>
      <Path name="img/favicon.ico" authType="shibboleth" requireSession="false" />

About the path, we are not redirect to login page (behaviour OK), but we have an error 500. We suppose that SP checks the AccessControl rules even if the requireSession attribute is set to false. This behaviour seems strange.

Do you have a solution for not checking this path ?