We have our service provider site hosted on F5 load balanced environment with SSL offloading. So, whenever its a SP initiated request, the ACS is being passed as http instead of https although I have configured it to be https in the saml.config file in the idp. Now the F5 automatically converts this http POST to a https POST and I see the error "The message is not an HTTP POST"
The idp originated request however successfully passes to the https ACS and creates a session on the SP.
Please let me know where i am going wrong.
|