I use Spring Security SAML so that my application runs as SP. I was able to complete the end-to-end solution. However, I ran into a problem when the user wants to access the application using multiple URLs. I configured my SP metadata with the Assertion mywebsite Consumer Service URL: 8080 / myapp / saml / SSO.
The user can also access the application through the fully qualified domain name
mywebsite.fulldomainname: 8080 / MyApp /
If the user accesses the second URL, the SP application will be redirected to the IDP, which will return the first URL that will not give this message:
InResponseToField of the response does not match the sent message
Even if I used EmptyStorageFactory, it will still fail in AbstractProfileBase.verifyEndpoint
How can i fix this?
source
share