Shibboleth Developers

[<>]

For now, I was trying to simulate the actual usage pattern of users, so I was 
setting RelayState to the value the SP set upon initiating SSO, but I could 
change it to specify the specific URL I am interested in (and I may still do 
that).  I am screwing up the cookies though, so I will need to figure that 
out.  

Thanks,
Jeff

________________________________________
From: Scott Cantor 
[]
Sent: Friday, April 24, 2009 1:24 PM
To: 

Subject: RE: [Shib-Dev] SP Question


 wrote on 2009-04-24:
> After posting the SAML Assertion to the SP's ACS, I
> get dropped back to the "homeURL" configured in the shibboleth.xml, and if
I
> try and retrieve a protected page via an additional execution of curl, the
> SSO profile starts over and the SP redirects me to the IDP again.  I have
> curl configured to store/reuse cookies between execution, which I thought
> was sufficient to maintain the SP session, but that does not seem to be
> working.  Anyone have an idea what could be wrong?  Is there something
> obvious I am overlooking that would explain why I can't seem to use the SP
> Session that is created on SSO?

You can obviously supply a target value of the URL you want in the first
place and avoid the homeURL problem, but that won't fix the cookie issue.
Your client must not be supplying the cookie correctly, there's not much
more to it than that.

Do you have a trace of the final request?

-- Scott