Expand my Community achievements bar.

SAML 2.0 Authentication Handler - Rejected empty referrer header

Avatar

Level 2
Level 2
2/20/23 12:42:12 PM

hello everyone, 

I configured SAML 2.0 Authentication Handler on AEM 6.5 following https://experienceleague.adobe.com/docs/experience-manager-65/administering/security/saml-2-0-authen... for we-retail and i'm getting a 

20.02.2023 21:32:26.547 *INFO* [qtp927739593-1970] org.apache.sling.security.impl.ReferrerFilter Rejected empty referrer header for POST request to /content/we-retail.html

I see the post entering with all data and when i activate the allows empty option at apache filter, the localhost:4503/content/we-retail.html reloads multiple times. Is there any configuration that i'm missing?

k_arroyo_guzman_0-1676925482120.png

Thanks in advance

 

Views

1.0K

Replies

7
Sign in to like this content

Total Likes

Translate
Translate
7 Replies

Avatar

Community Advisor
Community Advisor
2/22/23 9:02:45 AM

Hi @qath ,

 

This error is is due to the Apache Sling Referrer Filter will not allow empty Referrer address by default.
 
For testing purpose, you can allow empty referrer by changing the Apache Sling Referrer Filter.

Apache Sling Referrer Filter configuration

Search for "Apache Sling Referrer Filter"
Select "Allow Empty"
ChitraMadan_0-1677085296857.jpeg

 

This should be only enabled for testing purpose.
 
 

Views

962

Replies

6
Sign in to like this content

Total Likes

Translate
Translate

Avatar

Level 2
Level 2
2/22/23 10:06:07 AM
In response to ChitraMadan

thanks @ChitraMadan but i tried that too and the /content/we-retail.html reloads multiple times, I starting to think that the AEM page has no complete info of all places that are needed to configure.

 

 

Views

955

Replies

1
Sign in to like this content

Total Likes

Translate
Translate

Avatar

Level 2
Level 2
3/9/23 7:13:35 AM
In response to qath

I am facing exactly the same issues. Was this ever resolved?

 

Thanks,

Views

897

Replies

0
Sign in to like this content

Total Likes

Translate
Translate

Avatar

Level 2
Level 2
3/9/23 10:14:36 AM
In response to ChitraMadan

Solved with:

Apache Sling Referrer Filter"
Select "Allow Empty"

Views

889

Replies

2
Sign in to like this content

Total Likes

Translate
Translate

Avatar

Level 2
Level 2
3/10/23 12:29:59 AM
In response to qath

Thanks, but how is the multiple reloading - from /content/we-retail.html to saml login page resolved?

Views

875

Replies

1
Sign in to like this content

Total Likes

Translate
Translate

Avatar

Level 2
Level 2
3/13/23 8:47:31 AM
In response to andrija_sm

Yes, you need to check all the configuration params, in my case was because my accertion url should be a /saml_login one.

For logger works correctly you should Configure a Logger for SAML

 

Views

835

Replies

0
Sign in to like this content

Total Likes

Translate
Translate

Avatar

Level 1
Level 1
11/17/23 1:31:05 AM
In response to ChitraMadan

Hi, I have got the same problem but before i check this mark im wondering for what reason it is not checked in from the start. What problems could this lead to if i check it?

Views

464

Replies

0
Sign in to like this content

Total Likes

Translate
Translate
Related Conversations
LDAP and SAML potential conflicts

Views

142

Likes

0

Replies

2
AEM SAML Login URL

Views

421

Likes

0

Replies

6
Event handler triggered twice in AEM as Cloud Service or Not getting Triggered at all.

Views

976

Likes

0

Replies

25
AuthenticationSupport service missing. Cannot authenticate request.

Views

415

Likes

0

Replies

8
CSRF API response is empty sometimes during high user performance Testing

Views

285

Likes

0

Replies

4