Embedded Discovery Service not redirecting to the IDP login page

classic Classic list List threaded Threaded
3 messages Options
Reply | Threaded
Open this post in threaded view
|

Embedded Discovery Service not redirecting to the IDP login page

Nikhil
Hi Team,

When we select any Organization its looping to the same page

I'm not sure why accessing the RequestInitiator doesn't work. If i provide
an IdP's entityID explicitly, its re-directed to the correct location. For
examle,
https://shibboleth-dev.snapwiz.net/Shibboleth.sso/Login?entityID=https%3A%2F%2Fidp.imu.edu.my%2Fidp%2Fshibboleth.

But am getting following url when selecting the organization. and its
looping to the same page. Attaching the idpselect_config.js for reference

https://shibboleth-dev.snapwiz.net/shibboleth-ds/?entityID=https%3A%2F%2Fidp.imu.edu.my%2Fidp%2Fshibboleth

shibboleth2.xml:

            <SSO discoveryProtocol="SAMLDS"
discoveryURL="https://shibboleth-dev.snapwiz.net/shibboleth-ds">
                   SAML2
            </SSO>


apache shibboleth-ds.conf

<IfModule mod_alias.c>
  <Location /shibboleth-ds>
    <IfVersion >= 2.4>
      Require all granted
      AuthType Shibboleth
      ShibRequestSetting requireSession 0
   #   Allow from all
    </IfVersion>
    <IfVersion < 2.4>
      Allow from all
    </IfVersion>

idpselect_config.txt
<https://shibboleth.1660669.n2.nabble.com/file/t399151/idpselect_config.txt

Thanks 
Nikhil K S


--
To unsubscribe from this list send an email to [hidden email]
Reply | Threaded
Open this post in threaded view
|

RE: Embedded Discovery Service not redirecting to the IDP login page

Rod Widdowson
Do you believe the DS to be configured correctly?   My suspicion would be that you haven't specified everything correctly, maybe the return whitelist?
You may need to turn on the browser's console to see errors.


--
To unsubscribe from this list send an email to [hidden email]
Reply | Threaded
Open this post in threaded view
|

RE: Embedded Discovery Service not redirecting to the IDP login page

Nikhil
I couldn't find any errors in the console logs. Is am  missing something in
configuration

you can check and confirm the console logs from your end also by hitting
"https://shibboleth-dev.snapwiz.net/Shibboleth.sso/Login"

this.returnWhiteList = [
"^https:\/\/shibboleth-dev\.snapwiz\.net\/Shibboleth\.sso\/Login.*$" ];

shibboleth2.xml
--------------------

 <SSO discoveryProtocol="SAMLDS"
discoveryURL="https://shibboleth-dev.snapwiz.net/shibboleth-ds">
                   SAML2
</SSO>


     <MetadataProvider type="XML"
                         
url="http://metadata.ukfederation.org.uk/ukfederation-metadata.xml"
                          backingFilePath="/opt/ukfederation-metadata.xml"
reloadInterval="7200">
        </MetadataProvider>


shiibboleth-ds.conf
-------------------------

# Basic Apache configuration

<IfModule mod_alias.c>
  <Location /shibboleth-ds>
    <IfVersion >= 2.4>
      Require all granted
    </IfVersion>
    <IfVersion < 2.4>
      Require all granted
    </IfVersion>
    <IfModule mod_shib.c>
      AuthType shibboleth
      ShibRequestSetting requireSession false
      require shibboleth
    </IfModule>
  </Location>






--
Sent from: https://shibboleth.1660669.n2.nabble.com/Shibboleth-Developers-f1660781.html
--
To unsubscribe from this list send an email to [hidden email]