Error 500 when SAML Session is expired
Concerned version
Version: 2.0.7
Platform: Debian 9.11 /apache 2.4
Summary
we experienced a new problem after upgrading to 2.0.7: Our platform is an active/passive cluster between two nodes (debian 9.11, LL::NG 2.0.7). I upgraded both and tested LL::NG on both but had two different behaviors:
When we tried the SAML service, people experienced a 500 error we never had before when switching between ll::Ng machines. If the user closes his web browser and re opens his SAML service, everything goes fine. In the logs we saw this error we never had before.
Logs
[Wed Feb 19 09:04:24 2020] [LLNG:30734] [debug] Processing _redirect
[Wed Feb 19 09:04:24 2020] [LLNG:30734] [debug] Add issuerRequestsaml, issuerRequestsamlPath in keepPdata
[Wed Feb 19 09:04:24.468097 2020] [fcgid:warn] [pid 30670:tid 140567358990080] [client X.X.X.X:51905] mod_fcgid: stderr: Can't use string ("1") as an ARRAY ref while "strict refs" in use at /usr/share/perl5/Lemonldap/NG/Portal/Main/Issuer.pm line 95., referer: https://some_external_sp/public/federatedIdentity/execute
[Wed Feb 19 09:04:24.468202 2020] [deflate:debug] [pid 30670:tid 140567358990080] mod_deflate.c(853): [client X.X.X.X:51905] AH01384: Zlib: Compressed 21 to 23 : URL /index.fcgi/saml/singleSignOn, referer:https://some_external_sp/public/federatedIdentity/execute
Backends used
LDAP Auth for SAML service
Possible fixes
User has to close his browser/session.