Question

2
Replies
79
Views
Close popover
Yeun-Ho Chung (Yeun-HoC)
Capgemini

Capgemini
FR
Yeun-HoC Member since 2018 4 posts
Capgemini
Posted: October 8, 2020
Last activity: October 9, 2020
Solved

Question about RelayState in SAML authentification

Hello,

 

I have a question about the utility in RelayState durning the exange with a IDP.

The IDP tell me that the RelayState is not mandatory but if i am not mistaken in Pega activity the relaystate is mandatory to give access to Pega.

What is your recommandation ? force the IDP to give me a RelayState ? or accept to modifiy the activity to ignore the blank RelayState?

for me the RelayState in pega check return request to be sure that it was initiate by Pega so if ignore the relaystate it was a security problem.

 

best regards.

Yeun-Ho Chung 

***Edited by Moderator: Pallavi to update platform capability tags***
***Edited by Moderator Marissa to change type from General to Product, update Product details***
Pega Platform Security