question

Aaronralls avatar image
0 Votes"
Aaronralls asked ·

Does Azure AD support RelayState as form variable

I am creating a SP-initiated SAML flow where I need to send the RelayState via a form POST variable along with the SAMLRequest.

Is this allowed and if so how do I configure it?

Currently, the communication coming back from Azure AD has the SAMLResponse in the form variable and an empty RelayState form parameter.

azure-active-directory
10 |1000 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

1 Answer

FrankHuMSFT-3200 avatar image
0 Votes"
FrankHuMSFT-3200 answered ·

You should be able to add the relaystate as a query parameter in your request and that should configure the SAMLRequest.

I'm not sure what you're requesting in particular "post variable along with the samlrequest". Are you requesting the AAD server to send another post request with the relaystate in the body of the post to your server?

See here for more info on that : https://social.msdn.microsoft.com/Forums/azure/en-US/e6f5d9ee-9ca5-4027-971d-b89735fe2a85/does-azure-support-dynamic-relaystate

· 1 · Share
10 |1000 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

Will it work with HTTP Post variable vs a query parameter?

The SAMLRequest message is HTTP POST variable.

We send them to Azure AD in the same request.

EX:

https://myapps.microsoft.com/signin/**[REST OF APP URL]**

HTTP FORM POST VARIABLES

RelayState: https://router.apptreesoftware.com/auth/accruent/saml/complete?session=**VALUE OF SESSION**

SAMLRequest: SOME SAML REQUEST


0 Votes 0 · ·