I’m not sure why you’re specifying “saml-session” as the cookie name when calling ‘builder.Services.AddSession’.
We use a separate cookie to maintain state in support of the SAML protocol. Its default name is “saml-session”.
This is separate from the ASP.NET Core session cookie that you’re configuring by calling ‘builder.Services.AddSession’.
These cookies should have different names. I suggest either leaving the default name or specifying a different name for the ASP.NET Core session cookie.
If there’s still an issue, please enable SAML trace and send the generated log file as an email attachment to support@componentspace.com mentioning your forum post.