GitHub user weizhouapache added a comment to the discussion: SAML Auth is broken after the 4.19.2 upgrade
> I’ve tested with both `CookieOrParameter` and `Null` and can confirm that > neither resolves the issue. I’m starting to suspect that the root cause might > lie in an insufficient Nginx configuration. However, what’s most puzzling is > that everything seems to work fine when the `HttpOnly` header is removed... however, we cannot remove `HttpOnly`, it will cause severe security issue. has the nginx config updated recently ? especially settings for cookie GitHub link: https://github.com/apache/cloudstack/discussions/11147#discussioncomment-13680143 ---- This is an automatically sent email for users@cloudstack.apache.org. To unsubscribe, please send an email to: users-unsubscr...@cloudstack.apache.org
