[OPENAM-15713] AM SP drop the 80 characters RelayState silently for HTTP Redirect Created: 25/Nov/19 Updated: 17/Jun/20 Resolved: 11/Mar/20
|Affects Version/s:||13.5.2, 5.5.1, 126.96.36.199|
|Fix Version/s:||5.5.2, 7.0.0, 6.5.3|
|Reporter:||Sam Phua||Assignee:||Sachiko Wallace|
|Remaining Estimate:||Not Specified|
|Time Spent:||Not Specified|
|Original Estimate:||Not Specified|
|Sprint:||AM Sustaining Sprint 72|
|Support Ticket IDs:|
|Needs QA verification:||
|Are the reproduction steps defined?:||
Yes and I used the same an in the description
AM SP drop the 80 characters RelayState silently for HTTP Redirect due to SAML specification.
The SAML specs mandate that the RelayState cannot be more than 80 characters. This is stated in
Unless you are very knowledgeable about the SAML specifications, when this RelayState is dropped from AM silently , there is no debugging message in the Federation log that the RelayState has been dropped and it makes troubleshooting extremely hard.