Hi there, currently facing infinite redirects with spring fediz e.g
f.s.w.FederationAuthenticationEntryPoint : Redirecting to IDP:
https://domainname/fediz-idp/federation?wa=wsignin1.0&wreply... the
corresponding Spring configuration is currently the following:
@Override
protected void configure(HttpSecurity http) throws Exception {
FederationLogoutFilter federationLogoutFilter =
getApplicationContext().getBean(FederationLogoutFilter.class);
FederationAuthenticationFilter federationAuthenticationFilter =
getApplicationContext()
.getBean(FederationAuthenticationFilter.class);
FederationSignOutCleanupFilter federationSignOutCleanupFilter =
getApplicationContext()
.getBean(FederationSignOutCleanupFilter.class);
FederationAuthenticationEntryPoint federationAuthenticationEntryPoint =
getApplicationContext()
.getBean(FederationAuthenticationEntryPoint.class);
SessionFixationProtectionStrategy sessionFixationProtectionStrategy =
getApplicationContext()
.getBean(SessionFixationProtectionStrategy.class);
http.csrf().disable();
http.addFilter(federationLogoutFilter);
http.addFilterAt(federationSignOutCleanupFilter,
AbstractPreAuthenticatedProcessingFilter.class);
http.addFilterAfter(federationAuthenticationFilter,
BasicAuthenticationFilter.class);
http.sessionManagement().sessionAuthenticationStrategy(sessionFixationProtectionStrategy);
http.antMatcher("/").authorizeRequests().anyRequest().permitAll();
http.antMatcher("/secure/**")
.authorizeRequests()
.anyRequest()
.authenticated()
.and()
.exceptionHandling()
.authenticationEntryPoint(federationAuthenticationEntryPoint);
}
Any clue what is misconfigured?
Best Regards
