CAS Authn + SAML IDP: Passing request parameters to redirect
When using a bridge with SAML IDP and CAS Authn, there is no proper redirection.
- SP SAML request LemonLDAP IDP to /saml/singleSignOn?[SAML params]
- If user not already logged, LemonLDAP use CAS auth, but strip the SAML query parameters. CAS service url is then url/saml/singleSignOn
- CAS add the ticket parameter and redirect to LemonLDAP using the service url
- No SAML response or final redirect is done
I patched AuthCAS.pm extractFormInfo to remove the parameters stripping. It works on my settup, however i'm not an expert of LemonLDAP and it could break something elsewhere.
I have attached my modified AuthCAS.pm for you to take a look