Hi there,
We implemented a Service Provider and were testing logging in with various Identity Providers, but we encountered an issue. Some issuer urls are http, not https. Okta is an example of an IdP that uses http issuer urls, like http://www.okta.com/exkelo849hsBDr0O2332. The problem with this is when calling SamlServiceProvider.InitiateSsoAsync("issuer url"), the browser doesn't appear to redirect. If we change the issuer url to be https, it will redirect to Okta, but then we get an error after logging in since the issuer urls don't match (http vs https).
My google skills are failing because I wasn't able to find any information on why http urls wouldn't work correctly for redirecting. We could just convert the url to https in our code right before calling InitiateSsoAsync, but that seems a bit hacky. Is there a better way of handling this issue?
We implemented a Service Provider and were testing logging in with various Identity Providers, but we encountered an issue. Some issuer urls are http, not https. Okta is an example of an IdP that uses http issuer urls, like http://www.okta.com/exkelo849hsBDr0O2332. The problem with this is when calling SamlServiceProvider.InitiateSsoAsync("issuer url"), the browser doesn't appear to redirect. If we change the issuer url to be https, it will redirect to Okta, but then we get an error after logging in since the issuer urls don't match (http vs https).
My google skills are failing because I wasn't able to find any information on why http urls wouldn't work correctly for redirecting. We could just convert the url to https in our code right before calling InitiateSsoAsync, but that seems a bit hacky. Is there a better way of handling this issue?