SAML IDP POST to /saml_login URL returns 403 response

Description

You have configured SAML Authentication in AEM and after logging in IDP, you get a 403 response from AEM during the SAML POST to /saml_login or /content/saml_login (or other URL configured for the iDP to post back to).

The problem only happens when authenticating via the dispatcher enabled URL.

In the dispatcher.log, you find this text:

Filter rejects: POST

Cause

The dispatcher /filter section allows POST requests to */saml_login.

Resolution

Add the following rule to the dispatcher farm configuration (.any files) /filter section:

/0100  /method "POST" /url "*/saml_login" }

On this page

Adobe Summit Banner

A virtual event April 27-28.

Expand your skills and get inspired.

Register for free
Adobe Summit Banner

A virtual event April 27-28.

Expand your skills and get inspired.

Register for free
Adobe Maker Awards Banner

Time to shine!

Apply now for the 2021 Adobe Experience Maker Awards.

Apply now
Adobe Maker Awards Banner

Time to shine!

Apply now for the 2021 Adobe Experience Maker Awards.

Apply now