Hi guys,
I am having this issue on SSO redirection. When I call the below URL from an iframe, it is not redirecting to the URL specified in the redirect function.
It is redirecting to the default landing page as specified in the Appearance Settings
Does anyone here encountered the same issue? Hope to hear from anyone soon. Thanks!
Hi @froilan.benito
Please use the email support, when using the Pro/Enterprise plans.
You should just use relative paths, example /dashboard/1?filter=value
If you look in your browser developer Network-tab, then you should see the manually defined redirect path being send to the SAML IdP, which can then either return that path or completely overrule it, but that's outside of Metabase's control.
Hi @flamber
it still not redirecting to the correct URL. It should redirect to the below URL.
But it's redirecting to the default page instead.
Maybe I am missing something?
@froilan.benito Don't use full URLs, just the path, and remember to URL encode, since you're include ? in your redirect.
Look at the POST /auth/sso to see what Metabase is receiving from the IdP, which is what defines the redirect.
Please use the email support, when using the Pro/Enterprise plans.
Hi @flamber
I've followed your instruction and still don't get the result correctly.
This is the URL when I called the Metabase SSO with redirect to the dashboard with parameter ORWM-ERSF
This is what the header response I get:
Here's the my configuration in okta:
Please use the email support, when using the Pro/Enterprise plans. This forum is user-to-user support and people using the free open source edition.
When using SAML, then the RelayState is send in the request to POST /auth/sso by the SAML IdP.
This is what controls where Metabase tries to redirect after login.
It seems like Okta does not allow the SP to send the RelayState without adding some trusted origins:
https://support.okta.com/help/s/question/0D51Y00006aAeE9SAK/sp-initiated-saml-sso-relay-state-issue?language=en_US
