Hey Vieri, Not sure if you want to try this - I could not get guacamole-auth-saml-1.4 working with my guacamole 1.4 deployment. As far as I remember it had to do with the proxy config (I'm not an expert) I reverted back to guacamole-auth-saml-1.3.0.jar (the rest of the deployment is still v1.4, only that jar file is v 1.3) and everything was working back again.
my saml-entity-id value in guacamole.properites is the same as saml-callback-url value, i.e. https://my-guacamole.mydomain.com/ Thanks, T On Wed, 29 Jun 2022 at 11:40, Vieri <[email protected]> wrote: > Hi, > > When using the "new-path" example config in > https://guacamole.apache.org/doc/0.9.7/gug/proxying-guacamole.html, how > would one define the saml* options in guacamole.properties, ie. > saml-callback-url? > > This is what I set: > > saml-entity-id: whatever (same as defined in IdP) > saml-callback-url: https://guac.mydomain.org/ > > > I'm asking because my SAML requests contains: > > AssertionConsumerServiceURL=" > https://guac.mydomain.org/api/ext/saml/callback"; > > but I am unable to log-in because I get an HTTP error 405 when calling > https://guac.mydomain.org/api/ext/saml/callback. > > My apache config contains: > > ProxyRequests Off > ProxyPreserveHost On > > <Location /> > Require all granted > ProxyPass https://localhost:8543/guacamole/ flushpackets=on > ProxyPassReverse https://localhost:8543/guacamole/ > ProxyPassReverseCookiePath /guacamole/ / > </Location> > > <Location /websocket-tunnel> > Require all granted > ProxyPass wss://localhost:8543/guacamole/websocket-tunnel > ProxyPassReverse > wss://localhost:8543/guacamole/websocket-tunnel > </Location> > > > Any thoughts? > > Regards, > > Vieri > > > --------------------------------------------------------------------- > To unsubscribe, e-mail: [email protected] > For additional commands, e-mail: [email protected] > >
