Re: UAA error: InResponseToField of the Response doesn't correspond to sent message


Daniel Jones
 

Nice one for finding the reason, and also for taking the time to share it for the next person that stumbles across this post in search results :)

Regards,
Daniel 'Deejay' Jones - Managing Director
+44 (0)79 8000 9153
EngineerBetter Ltd - More than cloud platform specialists


On Tue, 23 Feb 2021 at 11:42, Enrique Cano <enrique.canocarballar@...> wrote:
I've found the issue. The parameter servlet.idle-timeout was set to 60 seconds. That meant the session was removed after that timeout if there was no communication from the IdP. When eventually a SAML response was sent back to UAA, UAA would try to find the corresponding SAML request in the cache associated to the session, but because the session was no longer there, it was raising that error.

Join cf-dev@lists.cloudfoundry.org to automatically receive all group messages.