In our application, we are using SP initiated SSO, by redirecting with the SAMLRequest parameter to the IDP SSO page. After a successful login user is redirected back to our application. Now when the user logs out we redirect page to SLO page by SP initiated SLO method and after logout from IDP ADFS, they redirect back the user to our application's login page. To this point, SSO works as expected. But when a user tried to login immediately, when the user redirects to the ADFS's SSO login page but on the successful login ADFS calls AssertionConsumerServiceUrl and then we call SAMLServiceProvider.ReceiveSSO method. We are getting an error at this point. Exception: ComponentSpace.SAML2.Exceptions.SAMLProtocolException: The SAML message InResponseTo _bb137ad2-69dc-47c0-8ce0-6506fe0dc330 doesn't match the expected InResponseTo _1147aa2f-59d3-4227-b317-b4edf4835c28.
When I try to use DisableInResponseToCheck=true in SAML.config gives me an error about the invalid configuration and stops the SSO itself. Can you please help me with this? I am not able to enable the logs.
|