- 🇺🇸United States kevinquillen
These three IdP config values must be filled out in order to access the metadata. This is contrary to this module's configuration instructions which explicitly state that the metadata URL is accessible after only configuring the SP options. Since the error comes from the library I don't know if the module can do anything to avoid the error and allow for IdP-less configuration. I didn't dig into it that far. If not, then this may have to be a documentation issue.
Just ran into this and couldn't figure out why I was being asked for IDP values before we can receive the IDP information, which first requires the SP metadata to be provided.
Something here is incorrect and makes setting up SAML Authentication to an external provider rather confusing.
- 🇺🇸United States kevinquillen
Here is the tool I used to generate SP metadata because having to fill in all the IDP fields was confusing:
https://www.samltool.com/sp_metadata.php
You should be able to get the metadata with any level of information... this should be corrected (UI + docs) because it doesn't seem to match most literature online for configuring SAML with an external IDP.
- Status changed to Fixed
9 months ago 3:39pm 26 September 2023 - 🇳🇱Netherlands roderik Amsterdam,NL / Budapest,HU
Thank you for reporting this. (Both of you - I just didn't work on this module for almost a year.)
I had placed hints in rewritten (in 2021) code that mentioned workarounds for unnecessary checks being done for IdP data, in the SAML PHP Toolkit library... but apparently never followed that up by testing properly / figuring those "unnecessary checks" would make setup more difficult.
Now followed up. Forgot to add credit in commit message; I think it's being added when changing the status of this issue (while checking both your name).
Automatically closed - issue fixed for 2 weeks with no activity.
- Status changed to Fixed
3 months ago 10:24am 4 April 2024 - 🇮🇳India naveenvalecha New Delhi
Here's the patch for sites using 8.x-3.9 version