So, following on from my post yesterday I have installed the
discourse-saml plugin. Our iDP has setup everything on their end, but whenever we attempt to login the following message appears:
Sorry, there was an error authorizing your account. Perhaps you did not approve authorization?
Searching around meta I have found others with this same issues, but it usually relates to social login (e.g. Facebook, Twitter, etc.) rather than using a SSO plugin like
Looking in the logs, here is the error message:
(saml) Authentication failure! invalid_ticket: OneLogin::RubySaml::ValidationError, The response was received at https://example.com/auth/saml/callback instead of http://example.com/auth/saml/callback
So it looks like the response is going to the https site, whereas it wants to go to the http site. Not sure why it wants the response on the http site - does anyone have an idea about how to tell the plugin to expect the response on the https site?
Thanks in advance!