[keycloak-user] Using OneLogin php-saml library with keycloak

chenkeong.yap at izeno.com chenkeong.yap at izeno.com
Thu Jun 4 08:29:15 EDT 2015


hi,

can i know what is the error you received from keycloak? is it invalid requester?

Regards,
CK Yap

> On 4 Jun 2015, at 8:13 pm, pubudu gunawardena <pubudupg at gmail.com> wrote:
> 
> After debugging found a possible cause for this. In line 305 of
> SAML2BindingBuilder2 there is code as following
> 
> escapeAttribute(relayState)
> 
> which removes the forward slashes from the url. So I guess this is a bug?
> 
>> On Thu, Jun 4, 2015 at 5:14 PM, pubudu gunawardena <pubudupg at gmail.com> wrote:
>> Hi All,
>> 
>> I am trying to use the OneLogin php-saml library[1] as a service
>> provider that uses keycloak as a SAML identity provider. The
>> "RelayState" parameter is sent properly form the SP to the IDP but in
>> the response, the forward slashes are missing from the RelayState.
>> For example in the post parameters of the authentication request, the
>> RelayState shows "http://phpsaml/demo1/" but in the response from
>> keycloak, it shows "http:phpsamldemo1". This is causing the php-saml
>> library to throw exceptions. I'm using keycloak 1.2.0.Final.
>> 
>> How can I overcome this problem?
>> 
>> 
>> [1]https://github.com/onelogin/php-saml
>> 
>> --
>> Thanks,
>> Pubudu
> 
> 
> 
> -- 
> Thanks,
> Pubudu
> _______________________________________________
> keycloak-user mailing list
> keycloak-user at lists.jboss.org
> https://lists.jboss.org/mailman/listinfo/keycloak-user



More information about the keycloak-user mailing list