What is the jive.auth.disallowGuest system property set to on the instance?

Is there an SSO filter in place for the instance?

Can you provide the URL for the RSS feed that is having trouble so that I can test with it locally?

The problem is the permissioning of the Spaces.

The way the permissions are currently setup in the admin console, only registered users can view anything.  The space permissions on the root community do not allow the "Anyone" user to view spaces or content within spaces.  So, when the anonymous RSS feed request comes through, it tries to load up a community that cannot be viewed by a guest and the result is the auth request that is being seen.

To avoid this, the "Anyone" permissions line should have permission to view spaces and read content within the spaces.  The jive.auth.disallowGuest system property will control whether non registered users will be forced to login to the instance or not.

Let me see if I understand this....

If we give "anyone" access to view the space and to read the document and comments, then the feed works. They then click on a link and a Jive community page appears. Then because of SSO, they get redirected to the login page.

The one little wrinkle on this is a security pop-up box appears before the Jive page can fully render and redirect to the ACS login. I've attached a screenshot. I don't think this is too serious as they can't really capture this page or click on any links.

I understand the popup issue. The problem I was really concerned about was the redirecting from a Jive Page (which was not supposed to be accessible) back to the login page.

I think we're  in the process of trying to fix/understand all that now.

No. I think we are okay now.

C