Highlighted
fartyalvikram Contributor.
Contributor.
814 views

SP initiated SSO, "TARGET" is not wokring

I have Site A URL is https://apploc.dev.local (Which is protected inside Access Manager as Reverse Proxy) and Site B (Configured as an Identity Providers inside Access Manager).
This is an SP initiated SSO. When I hit the below URL, first it authenticate via Site B (IDP) and after succesfull authentication it redirect to the URL https://sso.devotn.ca/nidp/portal?locale=en_US and on the same tab and session when I hit https://apploc.dev.local URL it is redirecting to my Target application (Site A) which I mentioned in the below TARGET parameter.
https://sso.dev.local/nidp/saml2/spsend?id=SITEBDEV&sid=0&TARGET=https://apploc.dev.local
So please correct me where I was wrong, why "TARGET" is not wokring.
0 Likes
5 Replies
ScorpionSting Absent Member.
Absent Member.

Re: SP initiated SSO, "TARGET" is not wokring

NAM Versions?

Visit my Website for links to Cool Solution articles.
0 Likes
fartyalvikram Contributor.
Contributor.

Re: SP initiated SSO, "TARGET" is not wokring

ScorpionSting;2475526 wrote:
NAM Versions?


I am using Access Manager 4.3.
0 Likes
ScorpionSting Absent Member.
Absent Member.

Re: SP initiated SSO, "TARGET" is not wokring

I'm also curious about what contract sid=0 equates too....are there custom jsps or the like?

Visit my Website for links to Cool Solution articles.
0 Likes
fartyalvikram Contributor.
Contributor.

Re: SP initiated SSO, "TARGET" is not wokring

ScorpionSting;2475544 wrote:
I'm also curious about what contract sid=0 equates too....are there custom jsps or the like?


Yes we have custom JSP files, do I need to change sid?
0 Likes
ScorpionSting Absent Member.
Absent Member.

Re: SP initiated SSO, "TARGET" is not wokring

Possibly something broken in your custom jsp then....there is important code that needs to pass the redirect through...

String target = (String) request.getAttribute("target");
.
.
.
if ( target != null )
target = StringEscapeUtils.escapeHtml(target);

.
.
.
<% if (target != null) { %>
<input type="hidden" name="target" value="<%=target%>">
<% } %>


When you hit the login form, view computed source to make sure the target input is there and has the correct value.

Visit my Website for links to Cool Solution articles.
0 Likes
The opinions expressed above are the personal opinions of the authors, not of Micro Focus. By using this site, you accept the Terms of Use and Rules of Participation. Certain versions of content ("Material") accessible here may contain branding from Hewlett-Packard Company (now HP Inc.) and Hewlett Packard Enterprise Company. As of September 1, 2017, the Material is now offered by Micro Focus, a separately owned and operated company. Any reference to the HP and Hewlett Packard Enterprise/HPE marks is historical in nature, and the HP and Hewlett Packard Enterprise/HPE marks are the property of their respective owners.