Lightrun Answers was designed to reduce the constant googling that comes with debugging 3rd party libraries. It collects links to all the places you might be looking at while hunting down a tough bug.
And, if you’re still stuck at the end, we’re happy to hop on a call to see how we can help out.
Support HTTP-Redirect binding for IdP to SP SLO
See original GitHub issueFrom what I understand about SAML (which isn’t comprehensive), there is currently no way of using passport-saml to generate a metadata file that will trigger the IdP to using HTTP-Redirect to send an assertion to the SP in a SP-initiated flow (see https://github.com/bergie/passport-saml/blob/master/lib/passport-saml/saml.js#L939).
Am I missing something? Is it a hard fix to implement? I’d be happy to give a PR a shot, but any advice on stumbling blocks would be greatly appreciated.
Issue Analytics
- State:
- Created 7 years ago
- Comments:10 (6 by maintainers)
Top Results From Across the Web
Top Related Medium Post
Top Related StackOverflow Question
Troubleshoot Live Code
Top Related Reddit Thread
Top Related Hackernoon Post
Top Related Tweet
Top Related Dev.to Post
Top Related Hashnode Post
@gregmsanderson yes, if you want to support both bindings you should map both methods (GET, POST) to your endpoint. the library will pull the SAML{Request, Response} from the body or from the query params of the request and everything should work just fine
The use case that brought me to this issue was actually for IDP to SP SLO, which according to the spec MAY use HTTP-Redirect binding… would you consider reopening this so as not to need a potentially duplicate issue for the support on the logout side?