Drupal simplesaml Login Problem about drupalauth HOT 11 OPEN

[deleted comment]

[deleted comment]

Has there been any progress on this issue? I am able to replicate the same 
error.

The most likely issue here is that you have two instances of SimpleSAMLphp 
running on the same host. Unless you have adjusted the cookie names of one of 
the SimpleSAMLphp installations this is the kind of problem you will run into. 
Edit the config.php file for one of the SimpleSAMLphp installations and modify 
the values of session.cookie.name and session.authtoken.cookiename

See if that resolves the issue.

Thanks for the quick response!  I altered the session.cookie.name and 
session.authtoken.cookiename for the IdP and I still get the same error.  Any 
other suggestions?

The third adjustment I would suggest has to do with where session data is 
stored. You want each instance of SimpleSAMLphp storing it's session data in a 
different place (e.g., one using memcache, the other using sql; or each using 
sql but different databases). 

The easiest thing to do is use sqlite. Set store.type to sql and set 
store.sql.dsn                 to something like 
'sqlite:/path/to/SPsessions.sq3' and for the other instance set it to 
'sqlite:/path/to/IDPsessions.sq3'

See if that, in combination with the other change resolves your issue.

Thanks again for the response.  I am already utilizing SQL as the session data 
storage.  The two drupal instances are utilizing different databases.  I 
followed the following write up to configure the sql storage: 
https://docs.acquia.com/articles/using-simplesamlphp-acquia-cloud-site

Just a thought, I am utilizing http on both sites because these are just 
sandbox pilot sites.  I could implement a self signed certificate if that is 
proving to be the issue.

If you're doing this in Acquia's DevCloud then varnish is likely the culprit. 
Using a cert, even a self-signed cert, should resolve the issue.

I have reconfigured simplesamlphp to use https and installed securepages on the 
drupal end just to ensure https is used.  A selfsigned cert is in place and 
working correctly.

When I hit the page on https I get an Acquia specific error screen which only 
shows when PHP errors occur so that the end user does not see the specific php 
error.  Within the browser if I change the url to http, I can see that it is 
still receiving the same error message from simplesamlphp.

I'm stumped.

Thanks for the suggestions.  Just to clarify, I have cleared varnish cache 
before trying it and I still get the same error message.  If you think of 
anything else I would appreciate it!