DonutsNL
DonutsNL
The required claims are missing in the SAML response from the idp. Are these claims added in the response? https://learn.microsoft.com/en-us/azure/active-directory/develop/saml-claims-customization
Hi @jayamin-10 I still expect that not all required claims are provided and is causing the JIT user->add to fail. I added: - Additional checks to the JIT function to...
let me quickly write a procedure to dump the provided Saml post to a local file so we can review that.
Changed the front/acs.php it should now dump the headers in the /front/ directory for you to review. Please logon using both users and review the dumps. Then please tell me...
Completely refactored the acs.php file and added a huge number of validations and error messages also implemented the ability to dump responses when debug is enabled.
Glad it is working. Ill add an additional check in the acs and write a warning pointing out to the MS documentation
I added an additional check to detect a guest user without transformations, could validate its working for me?
Hey @jayamin-10 , Yeah its something I need to dive into. Its also the reason why I added the fieldcheck in the config page. This to allow someone to correct...
Hi @jayamin-10, Thank you for validating my check. Good it is working as intended. I updated the error message with your suggestion.
@derricksmith, i think some merges will prove fruitfull. Also this issue can be closed.