Hi Hasintha, This is the session created by Travelocity app(SP session) and Travelocity keeps SAML2 assertion in that session. So better have look at the logic which Travelocity set the cookie after receiving the SAML2 response from the Identity Server.
Thanks, Thanuja On Mon, Nov 13, 2017 at 9:30 PM, Hasintha Indrajee <[email protected]> wrote: > Hi Dilshani, > > In SAML bearer grant type, there is no session associated with. If you > have a valid SAML assertion obtained from a trusted IDP (have to be > configured in IS) it should work. What do you mean by session in this > context ?. Also the flow you have described seems unclear since you are > using travelocity. Can you please elaborate more ? > > > On Mon, Nov 13, 2017 at 7:04 PM, Dilshani Subasinghe <[email protected]> > wrote: > >> Hi IS Team, >> >> Configured SAML 2 SSO in WSO2 IS 5.3.0 for the scenario of "SAML2 Bearer >> Assertion Profile for OAuth 2.0 with WSO2 Travelocity". It worked well and >> moved the setup to cloud instance. >> >> When it is working in cloud set up, it identified that while sending the >> SAML request it may not set the session. I used IP instead of hostname. >> When we give hostname in assertion URL, it may attach session correctly in >> the request. >> >> Is that the expected behavior? Why we can't attach session correctly with >> IP. I tried to use IP as we may have to add hostname as we accessing it >> remotely. Any solution for that? >> >> [1] https://docs.wso2.com/display/IS530/SAML2+Bearer+Asserti >> on+Profile+for+OAuth+2.0+with+WSO2+Travelocity >> >> Thanks, >> Dilshani >> >> -- >> >> Dilshani Subasinghe >> Software Engineer - QA *|* WSO2 >> lean *|* enterprise *|* middleware >> >> Mobile : +94773375185 <077%20337%205185> >> Blog : dilshani.me >> >> <https://wso2.com/signature> >> > > > > -- > Hasintha Indrajee > WSO2, Inc. > Mobile:+94 771892453 <077%20189%202453> > > -- *Thanuja Lakmal* Associate Technical Lead WSO2 Inc. http://wso2.com/ *lean.enterprise.middleware* Mobile: +94715979891
_______________________________________________ Dev mailing list [email protected] http://wso2.org/cgi-bin/mailman/listinfo/dev
