Menu
▾
▴
Re: [Unity-idm-discuss] Bug in hide from discovery handling from SPs
|
From: Krzysztof B. <kb...@un...> - 2025-05-21 13:01:23
|
Dear Sander, W dniu 21.05.2025 o 14:39, Sander Apweiler pisze: > Dear Krzysztof, > dear Roman, > > We encountered a bug in the handling of "hide-from-discovery" > statements in federation metadata for SPs. We have one SP, who set the > "hide-from-discovery" in the federation metadata. If this client wants > to authenticate users, unity shows an SAML error, which says the issuer > is not among trusted, although it is listed SAML web authentication > settings among the clients from federation. It is the same error > message you get if a wrong return URL is configured. > > Beside that the error message is wrong, it does not make sense to apply > the "hide-from-discovery" for SPs because you do not have a discovery > for clients. You have only a discovery for IdPs. > > Please let me know if you need some more details. Makes sense, likely some too generic code on our side. We will address that. Thanks, Krzysztof |
