[prev in list] [next in list] [prev in thread] [next in thread]
List: shibboleth-users
Subject: Re: IE and Shibboleth.sso/SAML2/POST
From: Yannick_Béot <yannick.beot () gmail ! com>
Date: 2012-10-24 21:46:26
Message-ID: CAMer1X4oi7gk0hkuajtGj5qtaN=Cu3+c-ig=ZXMTVDnG7NfpMg () mail ! gmail ! com
[Download RAW message or body]
[Attachment #2 (multipart/alternative)]
The IE errors is not very meaningfull because IE can be tricky :)
I mean the URL in the address bar might not be correctly refreshed. You
should use a plugin like Fiddler (
http://www.fiddler2.com/Fiddler2/version.asp) and trace the request to be
sure where you end up actually.
SAML Protocol define that the relay state must not exceed 80
characters. It is weird that you have this kind of error.
Shibboleth relaystate, when using the default "mem" (in memory) relaystate
generator, is pretty short.
Did you change anything about the relay state?
On Wed, Oct 24, 2012 at 11:11 PM, delosrec <delosrec@imsweb.com> wrote:
> Thanks for the replies.
>
> Scott, would the error occur on the SP or IDP side? I've looked through
> them
> (all of them, I think) and the only line I could find that wasn't of type
> INFO was:
>
> WARN [org.opensaml.saml2.binding.encoding.BaseSAML2MessageEncoder:133] -
> Relay state exceeds 80 bytes, some application may not support this.
>
>
>
>
> Yannick, they see the following:
> <http://shibboleth.1660669.n2.nabble.com/file/n7582673/Capture.png>
>
>
>
> --
> View this message in context:
> http://shibboleth.1660669.n2.nabble.com/IE-and-Shibboleth-sso-SAML2-POST-tp7582670p7582673.html
> Sent from the Shibboleth - Users mailing list archive at Nabble.com.
> --
> To unsubscribe from this list send an email to
> users-unsubscribe@shibboleth.net
>
[Attachment #5 (text/html)]
<div>The IE errors is not very meaningfull because IE can be tricky :)</div><div>I \
mean the URL in the address bar might not be correctly refreshed. You should use a \
plugin like Fiddler (<a \
href="http://www.fiddler2.com/Fiddler2/version.asp">http://www.fiddler2.com/Fiddler2/version.asp</a>) \
and trace the request to be sure where you end up actually.</div> <div><br></div>SAML \
Protocol define that the relay state must not exceed 80 <div>characters. It is weird \
that you have this kind of error.</div><div>Shibboleth relaystate, when using the \
default "mem" (in memory) relaystate generator, is pretty short.</div> \
<div>Did you change anything about the relay state?</div><div><br><br><div \
class="gmail_quote">On Wed, Oct 24, 2012 at 11:11 PM, delosrec <span dir="ltr"><<a \
href="mailto:delosrec@imsweb.com" target="_blank">delosrec@imsweb.com</a>></span> \
wrote:<br> <blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px \
#ccc solid;padding-left:1ex">Thanks for the replies.<br> <br>
Scott, would the error occur on the SP or IDP side? I've looked through them<br>
(all of them, I think) and the only line I could find that wasn't of type<br>
INFO was:<br>
<br>
WARN [org.opensaml.saml2.binding.encoding.BaseSAML2MessageEncoder:133] -<br>
Relay state exceeds 80 bytes, some application may not support this.<br>
<br>
<br>
<br>
<br>
Yannick, they see the following:<br>
<<a href="http://shibboleth.1660669.n2.nabble.com/file/n7582673/Capture.png" \
target="_blank">http://shibboleth.1660669.n2.nabble.com/file/n7582673/Capture.png</a>><br>
<br>
<br>
<br>
--<br>
View this message in context: <a \
href="http://shibboleth.1660669.n2.nabble.com/IE-and-Shibboleth-sso-SAML2-POST-tp7582670p7582673.html" \
target="_blank">http://shibboleth.1660669.n2.nabble.com/IE-and-Shibboleth-sso-SAML2-POST-tp7582670p7582673.html</a><br>
<div class="HOEnZb"><div class="h5">Sent from the Shibboleth - Users mailing list \
archive at Nabble.com.<br>
--<br>
To unsubscribe from this list send an email to <a \
href="mailto:users-unsubscribe@shibboleth.net">users-unsubscribe@shibboleth.net</a><br>
</div></div></blockquote></div><br></div>
--
To unsubscribe from this list send an email to users-unsubscribe@shibboleth.net
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic