0
0

Delete article

Deleted articles cannot be recovered.

Draft of this article would be also deleted.

Are you sure you want to delete this article?

More than 1 year has passed since last update.

mod_auth_mellonはSAML属性値を受け取れない原因

Posted at

mod_auth_mellonはSAML属性値を受け取れない原因わかりました。
4日掛かってやっと原因見つかった。
ほかの記事に全部書かれていないので、ここで書きます。

他の記事でよく記載されている
RequestHeader set Mellon-SAML-Response %{MELLON_SAML_RESPONSE}e
はちゃんと書いているのに、なんで受け取れないだろうと思って悩んでいた

↓↓↓★★★★これ設定しないと属性値受け取れない
MellonCookiePath /

デフォルトで設定されていないんだ!!!

auth_mellon_conf設定

<Location/> 
    MellonEnable info 
    MellonSessionDump On 
    MellonSamlResponseDump On 

    MellonEndpointPath /PostResponse
    MellonSPMetadataFile /etc/apache2/saml2/metadata.xml 
    MellonSPPrivateKeyFile /etc/apache2/saml2/metadata.key 
    MellonSPCertFile /etc/apache2/saml2/metadata.cert 
    MellonIdPMetadataFile /etc/apache2/saml2/idp-metadata.xml
    MellonIdPPublicKeyFile /etc/apache2/saml2/idp-public-key.pem

    MellonCookiePath /

    RequestHeader set Mellon-SAML-Response %{MELLON_SAML_RESPONSE}e 
</Location> 

# This is a location that will trigger authentication when requested. 
<Location /secret > 
    AuthType Mellon 
    MellonEnable auth 
    Require valid-user 
</Location> </code>
0
0
0

Register as a new user and use Qiita more conveniently

  1. You get articles that match your needs
  2. You can efficiently read back useful information
  3. You can use dark theme
What you can do with signing up
0
0

Delete article

Deleted articles cannot be recovered.

Draft of this article would be also deleted.

Are you sure you want to delete this article?