Dear list, we encountered an issue in the FederationAuthenticator in case the relying party application is deployed in the root context in Tomcat. In this case, the realm is wrongly calculated (wtrealm parameter is defined as "h"):
https://localhost:9443/idp/?wa=wsignin1.0&wreply=http%3A%2F%2Flocalhost%3A8080%2Fsecure%2Ftest.html&wtrealm=h Deploying the application in another context and adjusting the realm definition in RPClaims.xml helps. Is there any issue tracking system available to file a bug? Thank you & regards, Christian
