Our infosec requires SAML requests to be signed, and don't approve the strict HTTPS certificate checking when sending requests to identity providers. This causes links to our ideas portal to work only if the user is already logged in, which really...