forked from MirrorHub/synapse
Add additional SAML2 upgrade notes (#9550)
This commit is contained in:
parent
8a4b3738f3
commit
e5da770cce
2 changed files with 8 additions and 0 deletions
|
@ -124,6 +124,13 @@ This version changes the URI used for callbacks from OAuth2 and SAML2 identity p
|
||||||
need to add ``[synapse public baseurl]/_synapse/client/saml2/authn_response`` as a permitted
|
need to add ``[synapse public baseurl]/_synapse/client/saml2/authn_response`` as a permitted
|
||||||
"ACS location" (also known as "allowed callback URLs") at the identity provider.
|
"ACS location" (also known as "allowed callback URLs") at the identity provider.
|
||||||
|
|
||||||
|
The "Issuer" in the "AuthnRequest" to the SAML2 identity provider is also updated to
|
||||||
|
``[synapse public baseurl]/_synapse/client/saml2/metadata.xml``. If your SAML2 identity
|
||||||
|
provider uses this property to validate or otherwise identify Synapse, its configuration
|
||||||
|
will need to be updated to use the new URL. Alternatively you could create a new, separate
|
||||||
|
"EntityDescriptor" in your SAML2 identity provider with the new URLs and leave the URLs in
|
||||||
|
the existing "EntityDescriptor" as they were.
|
||||||
|
|
||||||
Changes to HTML templates
|
Changes to HTML templates
|
||||||
-------------------------
|
-------------------------
|
||||||
|
|
||||||
|
|
1
changelog.d/9550.doc
Normal file
1
changelog.d/9550.doc
Normal file
|
@ -0,0 +1 @@
|
||||||
|
Improve the SAML2 upgrade notes for 1.27.0.
|
Loading…
Reference in a new issue