-
1. Re: Strict post binding and context.xml parsing error
micgus Sep 12, 2012 4:16 AM (in response to micgus)Just to clearify, this is what I´ve been trying to configure it with:
<Context>
<Valve className="org.picketlink.identity.federation.bindings.tomcat.sp.SPRedirectFormAuthenticator>
<param>
<param-name>strictPostBinding</param-name>
<pram-value>true</param-value>
</param>
</Valve>
</Context>
When I tried this variant of the configuration file it at least was parsed without error:
<Context>
<Valve className="org.picketlink.identity.federation.bindings.tomcat.sp.SPRedirectFormAuthenticator"
param-name="strictPostBinding"
param-value="true"/>
</Context>
Sadly I still got the: "urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect is not supported" from the my external IdP. I´m a bit stuck here now .
One really ugly workaround would be to use a filter to change that manually.... but still, when signing is activated it will mess it up and perhaps the SP need that flag working to be able to accept the SAML Response as POST?