SAML login fails in Chromium based browser even after adding hash in the CSP
To Reproduce Setup a system with SAML along with WSO2 as IdP Log in with Chromium based browser Login process will be stuck at attempting to submit form data to identity provider
Expected behavior No JavaScript error should occur but the form should be submitted without any error.
Comment From: jzheaux
Hi, @snpt62, sorry you are having trouble. Your CSP seems to be complaining about Javascript in WSO2.
The value of the header:
script-src 'self' 'sha256-oZhLbc2kO8b8oaYLrUc7uye1MgVKMyLtPqWR4WtKF+c='
is correctly allowing the Spring Security Javascript to run; otherwise, it wouldn't have redirected to the WSO2 login page. You might try and change your CSP header to also include the hashes that the error message specifies.
If you still feel it's an issue with Spring Security, can you provide more detail?
Comment From: spring-projects-issues
If you would like us to look at this issue, please provide the requested information. If the information is not provided within the next 7 days this issue will be closed.
Comment From: spring-projects-issues
Closing due to lack of requested feedback. If you would like us to look at this issue, please provide the requested information and we will re-open the issue.