_idp_authn_lc_key Cookie Path changes when using Cookie Version 1
Invalid
Description fields
Basics
Logistics
Basics
Logistics
Description
When using Cookie Version 1 for all cookies the cookie path is incorrect
Example:
When Cookie Version set to 1 Name: _idp_authn_lc_key Path: /idp1/profile/SAML2/Redirect/
When Cookie Version set to 0 Name: _idp_authn_lc_key Path: /idp1
When using Cookie version 1, the cookie is not able to be retrieved by IDP because of the path is not correct. Changing to version 0 corrects this issue. I don't know how/when this path is modified. In code the context is correct. Its after the cookie is added to the response and written out that the path changes.
Please note version 1 of cookies is considered experimental and not recommended for production use as per javadocs in Cookie.
When using Cookie Version 1 for all cookies the cookie path is incorrect
Example:
When Cookie Version set to 1
Name: _idp_authn_lc_key
Path: /idp1/profile/SAML2/Redirect/
When Cookie Version set to 0
Name: _idp_authn_lc_key
Path: /idp1
When using Cookie version 1, the cookie is not able to be retrieved by IDP because of the path is not correct. Changing to version 0 corrects this issue.
I don't know how/when this path is modified. In code the context is correct. Its after the cookie is added to the response and written out that the path changes.
Please note version 1 of cookies is considered experimental and not recommended for production use as per javadocs in Cookie.