SAML Authentication Error: "This message decoder only supports the HTTP POST method
written-by
Anushka Tiwari
How To articles are not official guidelines or officially supported documentation. They are community-contributed content and may not always reflect the latest updates to Liferay DXP. We welcome your feedback to improve How To articles!
While we make every effort to ensure this Knowledge Base is accurate, it may not always reflect the most recent updates or official guidelines.We appreciate your understanding and encourage you to reach out with any feedback or concerns.
legacy-article
learn-legacy-article-disclaimer-text
Resolution
- If the user is using the service provider as Liferay, then the error indicates a mismatch in the HTTP method used for SAML communication between the Service Provider and the Identity Provider (IdP).
- Liferay expects the SAML message to be sent via HTTP POST, but it's receiving a different method (GET or REDIRECT) results in receiving the above error.
To resolve this:
1. Verify IdP Configuration: Ensure your IdP is configured to send SAML messages using the HTTP POST binding.
2. Check Network Restrictions: Confirm that there are no network restrictions (firewalls, proxy settings) between SP and the IdP that might be altering or blocking communication.
3. Confirm Artifact Resolution Support: The SAML 2.0 plugin in Liferay DXP doesn't support Artifact resolution. If IdP requires it, this error might occur. Adjust the IdP configuration if possible to use POST binding.
did-this-article-resolve-your-issue