Deepak Prabhakara
Deepak Prabhakara
This was the previously attempted PR - https://github.com/retracedhq/retraced/pull/546
@itzg Thanks for reporting this, we hadn't looked at the implementation of this part of the RFC. We'll report back as soon as we have had a chance to support...
@itzg Interestingly there is no public certificate anywhere in the request so it looks like that has to be exchanged in some form earlier to sending the request. Trying to...
@itzg That makes sense, we wanted to be as stateless as possible. Public key transfer with every request is not a problem with the chain of trust in itself since...
Pushed a workaround for now - https://github.com/boxyhq/mock-saml/pull/159
@jatingodnani The form to login is already there but we don't actually create a jwt session. That would be good to mimic some of the features like forcing authentication even...
@jatingodnani HttpOnly cookies
@jatingodnani next-auth makes it easy to work with sessions, please use that.
This is a great idea @agiannone and also ties in with https://github.com/boxyhq/mock-saml/issues/115. Thank you.
That error would typically mean there is a mismatch in either the certificate or the signature of the SAML request. Can you please check the SAML request generation on your...