When I test the connection from the Auth0 “Try” button it works successfully. However, I want to test the SAML flow when it’s initiated in the Okta dashboard. In order to do this, under Idp Initiated Requests I select “Accept Requests” and select my client application as the default application. Then I added a redirect_uri in the “Query String” input field. This redirect uri is to my server side code seeing as the final redirect is a Post request with a SAMLResponse body.
However, this redirect_url is ignored and a post request goes to the first callback URL in the Allowed Callback URLs for the app.
What am I missing to get this final step to work? Also, do I need to decode the SamlResponse? I would have thought that Auth0 would do this and create a JWT token for the user just as it does for other login types. Please let me know what I’m missing.
For anyone else who gets stuck in the same place as I did, the solution was to select Open ID Connect as the response protocol for the IdP initiated login.
However, my application is a ReactJS SPA. Auth0Provider is the HOC that handles token exchange for other logins, but it seems like it doesn’t handle it for IdP initiated logins. No idea why this is. Anyway, I found a solution here:
In order to use this solution, I needed to add the connection_id to my redirect_uri in the IdP initiated connection settings. All works now.