[prev in list] [next in list] [prev in thread] [next in thread] 

List:       shibboleth-users
Subject:    Re: [Shib-Users] IDP Login Page Detecting Target SP URL
From:       "Cantor, Scott E." <cantor.2 () osu ! edu>
Date:       2011-03-25 15:59:26
Message-ID: C9B27A22.72A4%cantor.2 () osu ! edu
[Download RAW message or body]

On 3/25/11 4:50 PM, "Koch, Ken" <ken.koch@wustl.edu> wrote:
>Hey all, my organization also wanted to grab the origination URL for
>source detection logic. We ended up modifying the login.jsp on the IDP to
>tack on the referrer URL when we redirect to our login pages. This seems
>to work in our case. If the browser's referrer settings are disabled, it
>passes ref=null.

It's unnecessary, since the "originator" is the SP, which is named by an
entityID. What URL it came from isn't really relevant. Never create
configuration based on locations, only identity.

-- Scott


[prev in list] [next in list] [prev in thread] [next in thread]