<iframe src="https://www.googletagmanager.com/ns.html?id=GTM-M74D8PB" height="0" width="0" style="display:none;visibility:hidden">
Loading
Skip to NavigationSkip to Main Content
System Status
Announcements
Announcements
Search
Search
Select Language
Knowledge Base
Knowledge Articles
Support Videos ↗
Documentation
Product Documentation ↗
Developer Documentation ↗
Product Release Notes ↗
Community
Events & Webinars
Okta Ideas ↗
Resources
Product Hub
Customer Success Hub
Product Release Update
Learning
Okta Learning ↗
Get Support
Open a Case
HomeCommunityForum
0D50Z00008G7VQHSA3Okta Classic EngineOkta Integration NetworkAnswered2024-04-30T09:18:25.000Z2017-01-29T22:57:15.000Z2018-08-12T04:16:58.000Z

th7vu (th7vu) asked a question.

Edited by varun.kavoori1.5210444522562532E12 September 5, 2018 at 1:20 AM
Okta - SAML redirect to custom webapp
Hello,

 

I've configured a SAML2.0 IdP for Okta (i.e. Okta is SAML2.0 SP).

After successful IdP initiated authentication via SAML, I want user to be redirected to a custom app. Therefore I configured the "Relay State" on Okta (SP) to https://mydomain/customApp/customPath.

However, for security reasons, I think the user is not being redirected by the SP to an absolute URL but instead get's redirected to https://mycompany.okta.com/customApp/customPath (which is obviously not a valid URL).

How do I have the user redirected to this URL after successful SAML auth? https://mydomain/customApp/customPath

 

Thanks,

Jatin
  • 4 answers
  • 5.17K views

  • th7vu (th7vu)

    This issue is now resolved using a bookmark app on Okta pointing to my custom app. Thanks Gabriel for your help!
    Selected as Best

  • gabriel.sroka1.4374539321839353E12 (Okta, Inc.)

    Hi Jatin

    Is Okta the IdP for the custom app? In other words, is it

    External IdP -> Okta SP -> Okta IdP -> Custom App

    ?

  • th7vu (th7vu)

    Thanks Gabriel.

     

    So, here is some more clarification. Imagine a simple custom-webapp/portal which asks user to enter their Okta username/password and then authenticates them by firing an Okta AuthAPI.

     

    Now imagine the same webapp which now allows the user to use SAML** for authentication instead of username/password, by having the user click the SSO URL.

    ** (IdP = external, SP = Okta).

     

    That's the reason why I need the user to be redirected to the custom-app (hopefully with a session cookie) after Okta validates the incoming SAML assertion.

     

    Regards,

    Jatin
    Expand Post

  • th7vu (th7vu)

    This issue is now resolved using a bookmark app on Okta pointing to my custom app. Thanks Gabriel for your help!
    Selected as Best

  • j5v7c (j5v7c)

    Jatin, 

    Assuming your custom app is a SAML app in your Okta, can we use Custom App's Sign On URL as the relay state?  Should not this trigger the authenticated user to redirect to the Custom App's Sign On URL (also called as SSO URL) instead of showing him the Dashboard?
This question is closed.
Loading
Okta - SAML redirect to custom webapp