djangosaml2: Forbidden /saml2/acs/ and Signature missing for response

I’ve tried to follow the documentation and I almost got this working with external IdP. The only problem is when user is redirected back to django SP I get “Authentication Error Access Denied”. Django log looks like this:

"GET /favicon.ico HTTP/1.1" 404 3199
Signature Error: Signature missing for response
XML parse error: Signature missing for response
Forbidden: /saml2/acs/
"POST /saml2/acs/ HTTP/1.1" 403 378

What am I missing?

About this issue

  • Original URL
  • State: closed
  • Created 2 years ago
  • Comments: 21 (10 by maintainers)

Most upvoted comments

I added the “SAML_USE_NAME_ID_AS_USERNAME” setting and I’ve used “mail” instead of “emailAddress”. Now it’s working. I guess you can close this issue.