<span style=" font-size:10pt;font-family:sans-serif">Hallo I would like
to inform if somebody did not strugle with simmilar trouble.</span>
<br>
<br><span style=" font-size:10pt;font-family:sans-serif">I am trying toi
work with midPoint as Service Procider and RH SSo as Identity provider,<br>
<br>
I succesfuly did folowing:</span>
<ol>
<li value=1>
<li value=1><span style=" font-size:10pt;font-family:sans-serif">apply
saml2 modul and sequence </span>
<ol>
<li value=1><span style=" font-size:10pt;font-family:sans-serif">json.securityPolicy.authentication.sequence[0].module.name
= "<b>rhSamlSso300</b>";</span>
<li value=2><span style=" font-size:10pt;font-family:sans-serif">json.securityPolicy.authentication.modules.saml2[1].name
=<b> "rhSamlSso300";</b></span></ol>
<li value=2><span style=" font-size:10pt;font-family:sans-serif">exchanged
metadata between midPoint and Rh SSO</span>
<li value=3><span style=" font-size:10pt;font-family:sans-serif">midPoint
sent request to Rh SSO</span>
<li value=4><span style=" font-size:10pt;font-family:sans-serif">RH SSO
displayed loginForm,</span>
<li value=5><span style=" font-size:10pt;font-family:sans-serif">RH sent
response to midPoint</span>
<ol>
<li value=1><span style=" font-size:10pt;font-family:sans-serif">with expected
username <i>(</i></span><span style=" font-size:12pt;color:#4f4f4f;font-family:Consolas"><i>AttributeStatement:
* username = thus</i></span><span style=" font-size:12pt"><i> </i></span><span style=" font-size:10pt;font-family:sans-serif"><i>)</i></span>
<li value=2></ol></ol><span style=" font-size:10pt;font-family:sans-serif">But
midpoint is unable to to make authorisation decison with following stack.</span>
<br><span style=" font-size:10pt;font-family:sans-serif"><b>com.evolveum.midpoint.web.security.MidPointGuiAuthorizationEvaluator.decide</b><br>
<br>
<br>
</span><img src=cid:_1_0E4109080E41066C0066D14DC12586E0 style="border:0px solid;">