Forums, Documentation & Knowledge Base - ComponentSpace

Relative AssertionConsumerServiceUrl redirects always to http instead of https


https://componentspace.com/forums/Topic9490.aspx

By monacense - 11/29/2018

Ciao ragazzi,
I'm implementing a ServiceProvider-initiated SSO for one of our applications (using SAML v2.0 for .Net4, Version 2.6.0.13).
Unfortunately even if I access our web application using https the expanded absolute AssertionConsumerServiceUrl is always a plain http url, which obviously results in the redirection to that unsecure url.
Are there any means to ensure that during expansion of the AssertionConsumerServiceUrl https is preferred over http, if both bindings are configured in the application server? 

The interesting part of my saml.config looks like that:
<ServiceProvider Name="https://appstest.domain.com/OurProject/"
        ...
       AssertionConsumerServiceUrl="~/LoginSAML.aspx"/>


I would be very grateful for any kind of advice.

Grazie mille in anticipo
Tanti saluti

Florian
By ComponentSpace - 8/12/2019

No worries.