Search

WIF and SAML 2.0 by lcarrion

Active

2
0
Sign in
 to vote
Type: Bug
ID: 695293
Opened: 10/17/2011 8:58:04 AM
Access Restriction: Public
0
Workaround(s)
0
User(s) can reproduce this bug
We are trying to use this extension in our PoC, this works fine if we used web app, but we have problem when we put our web app in a Azure Web Role, apparently it can’t redirect to our default page in azure emulator. Any help will be very appreciated
Details (expand)

Describe the problem that you're having.

We are trying to achive Single Sing On (SSO), our solution consists in three projects

1. IdentityProvider (web application project): Is our identity provider
2. Service Provider (web application project): This app will be hosted in Azure Web Role, this application is our service provider
3. TestWIFSAML2 (Windows Azure project): This project contain a web role that is associate with ServiceProvider

This is the code snippet of idP configuration
<SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="http://localhost:6010/IdentityProvider/saml/redirect/sso"/>

This is the code snippet of services provider configuration
<AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="http://localhost:6004/ServiceProvider/saml/post/ac" index="0" isDefault="true"/>

If we run the first two project (IdentityProvider and ServicesProvider) we can achive SSO, but if we add a new Windows Azure project and associate this with ServiceProvider project, we can't get the default page.

When we start solution We get this url https://127.0.0.1:8080/, then if the user is not authenticate redirect to http://localhost:6010/IdentityProvider/saml/redirect/sso (IdentityProvider), at the end redirect to http://localhost:6004/ServiceProvider/saml/post/ac (I thing here is our problem)

We need to do something in order to redirect again to https://127.0.0.1:8080/Default.aspx ? (I supposed to associate the Azure project with web app project was sufficient but I see it is not, I need to add anything more...

I try to change this localhost:6004 to 127.0.0.1:8080 in service provider configuration but it doesn't work.

Note: I have already set my windows azure project in order to use credentials needed to be authenticated by IdP.

Any help will be very appreciated.

What type of impact does this issue have?

Functionality
File Attachments
0 attachments
Sign in to post a comment.
Sign in to post a workaround.
© 2013 Microsoft Corporation. All rights reserved. Microsoft Connect Terms of Use | Trademarks | Privacy Statement