The scenario you described is clear enough to understand the motivation behind this issue.
One thing we could do in this case is use system properties to specify the ServiceURL for SPs. So we can set different values when deploying the SP in different servers. But AFAIK, this is not your case. Your scenario is about a SP deployed in a single server and accessed in two different ways (directly on the server or via a reverse proxy).
Support a "dynamic" ServiceURL/ACS from requests is something we need to take a closer look. I can think about some implications if we do that.
Anyway, I think this issue is now clear as pure water. One last thing, how are you managing this situation today ?
Thanks.
|