Config saml can not show link Use my institution/campus credentials

I want login sso
step link 4.22.3.2.2. Integrating with a SAML Identity Provider — Installing, Configuring, and Running the Open edX Platform documentation

I generate Public and Private Keys

openssl req -new -x509 -days 3652 -nodes -out saml.crt -keyout saml.key

create plugin python add Public and Private Keys and enable

from tutor import hooks

hooks.Filters.ENV_PATCHES.add_items([
    (
        "common-env-features",
        '"ENABLE_THIRD_PARTY_AUTH": true',
    ),
    (
        "openedx-lms-common-settings",
        """
# saml special settings
AUTHENTICATION_BACKENDS += ["common.djangoapps.third_party_auth.saml.SAMLAuthBackend", "django.contrib.auth.backends.ModelBackend"]
"""
    ),
    (
        "openedx-auth",
        """
"SOCIAL_AUTH_SAML_SP_PRIVATE_KEY": "yoursecretkey",
"SOCIAL_AUTH_SAML_SP_PUBLIC_CERT": "yourpubliccert"
        """
    ),
])

enable

• ENABLE_THIRD_PARTY_AUTH: true
• ENABLE_COMBINED_LOGIN_REGISTRATION: true

config admin
https://lms.domain.com/admin/third_party_auth/samlproviderconfig/
and Add Provider Configuration SAML IdP status Metadata Ready

SAML Configuration
metadata is working /auth/saml/metadata.xml

but cannot show link "Use my institution/campus credentials "

image400×365 6.77 KB

version palm

Make sure you have set Enabled and Visible in the SAML provider configuration

@Andres.Aulasneo Thank you so mush is working

Hi @Andres.Aulasneo
after config show error

Error Details:
Authentication failed: SAML login failed: ['invalid_response'] (The response was received at http://lms.domain/auth/complete/tpa-saml/ instead of https://lms.domain/auth/complete/tpa-saml/)

I want set http to https How to config?
http://lms.domain/auth/complete/tpa-saml/ to https://lms.domain/auth/complete/tpa-saml/
Is fix success.

set proxy_set_header X-Forwarded-Proto https

image1057×253 20.5 KB