Issue protecting only specific urls
If a user needs to protect only specific subparts of the application, usually they will just change the authorize.conf and change:
<Location "/">
with the url to protect like
<Location "/admin">
This change will make SSO to stop working with a 404 error on the application when doing the POST to /Shibboleth.sso/ADFS when coming back after login screen.
Tested with Python and PHP s2i applications.
Edited by Eduardo Alvarez Fernandez