Loading...

XML

Word

Printable

Details

Type: Bug
Resolution: Done
Priority: Major
Fix Version/s: Negotiation_2_2_8, Negotiation_2_3_0_CR2
Affects Version/s: Negotiation_2_2_5
Component/s: Negotiation
Labels:
None

Git Pull Request:
https://github.com/wildfly/jboss-negotiation/pull/3
Bugzilla References:
https://bugzilla.redhat.com/show_bug.cgi?id=1030053, https://bugzilla.redhat.com/show_bug.cgi?id=1085497, https://bugzilla.redhat.com/show_bug.cgi?id=1085504

Description

The NegotiationAuthenticator loses post data.

A customer is attempting to use Negotiation along with PicketLink at the IDP. This works fine as long as the SP is using HTTP-Redirect SAML binding.

If the SP is using HTTP-Redirect, then this issue is avoided as the SAMLRequest is passed along through the redirects on the URL.

If the HTTP-POST binding is used, then the NegotiationAuthenticator will lose the SAMLRequest post parameter. This means that after a user is successfully authenticated, the IDP will not know where to redirect the user to. As a result, the user will be left at the IDP index.html page.

Attachments

Activity

People

Assignee:: Darran Lofthouse

Reporter:: Derek Horton

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Dates

Created:: 2014/04/01 1:46 PM

Updated:: 2014/06/28 11:31 AM

Resolved:: 2014/04/08 8:22 AM