|
Hi Bobby Lawrence,
It is more clear. Thanks 
Accordingly with the specs, the AssertionConsumerServiceURL is intended to: "Specifies by value the location to which the <Response> message MUST be returned to the
requester". That said, I think you should always use a value that corresponds to a protected URI in your application.
Another important aspect of this behavior in PicketLink is that regardless the ACS value, PicketLink will always redirect the user to the original request once the SAML processing is done and he is authenticated at the SP.
Any thoughts ?
Cheers.
Pedro Igor
|
