Session upgrade with Auth::SAML
Concerned version
Version: %2.0
Platform: (Nginx/Apache/Node.js)
Summary
- Configure a SAML identity provider
- Go to http://auth.example.com
- Login
- Go to http://auth.example.com/upgradesession
You are sent back to the portal, but the session isn't upgraded
Logs
[debug] User dwho@idp was granted to access to /saml/proxySingleSignOnPost
[debug] Start routing saml
[debug] Processing _forAuthUser
[debug] Cleaning pdata
[debug] Processing importHandlerData
[debug] Processing controlUrl
[debug] Processing code ref
[debug] Launching ::Auth::Choice::_forAuthUser
[debug] Processing code ref
[debug] Launching ::UserDB::Choice::_forAuthUser
[debug] Processing code ref
[debug] Launching ::Password::Demo::_modifyPassword
[debug] Processing code ref
[debug] Not an issuer request /saml/proxySingleSignOnPost
[debug] Calling autoredirect
[debug] Building redirection to http://auth.example.com/
The SAML auth callback URL (proxySingleSignOnPost) is not picked up.
I have tried forcing the Auth::SAML code to process it:
(Auth/SAML.pm line 1440)
sub handleAuthRequests {
my ( $self, $req ) = @_;
if ( $req->uri =~ $self->sloRe or
$req->uri =~ $self->ssoAssConsumerRe ) {
return $self->extractFormInfo($req);
}
PE_OK;
}
But this only runs the extractFormInfo step. I don't know how to correctly send LLNG back into a real "upgrade" flow. Any ideas?