Well, I guess /cas/login?client_name=SAML2Client is allowed only for SAMLResponse (HTTP POST Operation).
The autodirect works with the following parameters, only when there is one client, for example SAML2Client or abc in the example below. cas.authn.pac4j.typedIdUsed=true cas.authn.pac4j.autoRedirect=true How do we allow autoredirect when there are multiple pac4j clients.. and client name is sent in the query string. Now that /login?client_name=xxx is not designed for this purpose, Is there another end point such as /redirectclient?client_name=xxxx ? On Fri, Mar 23, 2018 at 11:32 AM, RJ <ssogu...@gmail.com> wrote: > One PAC4J client works great, however, when multiple clients are defined, > > Login flow throws an error: > > /cas/login?client_name=abc, throws error:Unauthorized Access > /cas/login?client_name=def, throws error :Unauthorized Access > /cas/login throws default login page > > > properties: > cas.authn.pac4j.saml[0].clientName=abc > cas.authn.pac4j.saml[0].keystorePassword=xxxx > cas.authn.pac4j.saml[0].privateKeyPassword=xxxx > cas.authn.pac4j.saml[0].serviceProviderEntityId=https:// > tempsp01.example.com > .. > > cas.authn.pac4j.saml[1].clientName=def > cas.authn.pac4j.saml[1].keystorePassword=xxxx > cas.authn.pac4j.saml[1].privateKeyPassword=xxxx > cas.authn.pac4j.saml[1].serviceProviderEntityId=https:// > tempsp01.example.com > .. > > -- - Website: https://apereo.github.io/cas - Gitter Chatroom: https://gitter.im/apereo/cas - List Guidelines: https://goo.gl/1VRrw7 - Contributions: https://goo.gl/mh7qDG --- You received this message because you are subscribed to the Google Groups "CAS Community" group. To unsubscribe from this group and stop receiving emails from it, send an email to cas-user+unsubscr...@apereo.org. To view this discussion on the web visit https://groups.google.com/a/apereo.org/d/msgid/cas-user/CACNfiMLnMnOV6JFgf-FfeYSLKNY%2Bg-W7%3D6-beFbrV3EwNbTYeg%40mail.gmail.com.