Does Azure AD support RelayState as form variable

Question

Does Azure AD support RelayState as form variable

Aaron rallls 1

I am creating a SP-initiated SAML flow where I need to send the RelayState via a form POST variable along with the SAMLRequest.

Is this allowed and if so how do I configure it?

Currently, the communication coming back from Azure AD has the SAMLResponse in the form variable and an empty RelayState form parameter.

Answer 1

FrankHu-MSFT 971

You should be able to add the relaystate as a query parameter in your request and that should configure the SAMLRequest.

I'm not sure what you're requesting in particular "post variable along with the samlrequest". Are you requesting the AAD server to send another post request with the relaystate in the body of the post to your server?

See here for more info on that : https://social.msdn.microsoft.com/Forums/azure/en-US/e6f5d9ee-9ca5-4027-971d-b89735fe2a85/does-azure-support-dynamic-relaystate

Aaron rallls 1 Reputation point

2019-12-17T20:19:52.057+00:00

Will it work with HTTP Post variable vs a query parameter?

The SAMLRequest message is HTTP POST variable.

We send them to Azure AD in the same request.

EX:

https://myapps.microsoft.com/signin/**[REST OF APP URL]**

HTTP FORM POST VARIABLES

RelayState: https://router.apptreesoftware.com/auth/accruent/saml/complete?session=**VALUE OF SESSION**

SAMLRequest: SOME SAML REQUEST

Does Azure AD support RelayState as form variable

1 answer

Activity