question

AaronChristenson-7506 avatar image
0 Votes"
AaronChristenson-7506 asked piaudonn answered

How to pass parameter from RP to IDP in passive flow in URL using RelayState

Does anyone know how to send parameters in the RelayState request string. I have this https://adfsuat.lmcu.org/adfs/ls/idpinitiatedsignon.aspx?logintorp=urn:bki:servicingdigital:rwa:lmcu:uat and I also need to pass through
NameId=3423423
LoanIdentifier=3423423
TaxpayerIdentifierLast4Value=4893
PortfolioId=258

I have claims setup for the above types. I have seen links to URL Encryption associated with RelayState, but those do not give any details about parameters.

thanks

ADFS 4.0

adfs
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

1 Answer

piaudonn avatar image
0 Votes"
piaudonn answered

You cannot use the RelayState for this (you can't send value which will be read by ADFS).

The RelayState can be read by ADFS to determine the SP (it's an old way to do it since we have the LogonToRp that superseeds that since ADFS on Windows Server 2012 R2). But it is not consumed by ADFS for any other purposes. And you can't use both LogonToRp and the RelayState query string (it triggers an error).

Now, if what you mean is that you need to send those info in the token, that's fine. But that has nothing to do with the RelayState.

5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.