You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
I am trying to implement an SAML IdP using your library. But something seems to be broken with my configuration or to be a bug :-(
Here is what I did:
I set up a service provider which is basically just a cloned version of your light-saml core library. My webserver serves the /web/sp folder at https://sp.localhost.tld. It is configured using this XML file:
As you can see, the Identity Provider is seved at https://sso.localhost.tld. This is where my IdP app comes into play. It can be found here. In this IdP, my SP is configured as follows:
When I debug the code, it seems that OwnSignatureResolver::getSigningCredential() returns a credential without a private key. When debugging any further, the credentialResolver has three potential credentials (all have the same certificate, but only the last has a private key):
keyUsage: encryption
keyUsage: signing
keyUsage: null
I am not really sure, where the first two credentials come from.
Do have any clue?
Regards,
Marcel
The text was updated successfully, but these errors were encountered:
Hi,
I am trying to implement an SAML IdP using your library. But something seems to be broken with my configuration or to be a bug :-(
Here is what I did:
I set up a service provider which is basically just a cloned version of your light-saml core library. My webserver serves the /web/sp folder at
https://sp.localhost.tld
. It is configured using this XML file:As you can see, the Identity Provider is seved at
https://sso.localhost.tld
. This is where my IdP app comes into play. It can be found here. In this IdP, my SP is configured as follows:EntityID: https://sp.localhost.tld/
Certificate: SP CERTIFICATE (which is a self-signed certificate found in saml.crt)
Callback-Url: https://sp.localhost.tld/login.php
This SP is configured using the UI and built by my own ServiceProviderEntityStore.php.
Now, when I start a login from https://sp.localhost.tld/login.php I get redirected to my IdP and I get this exception:
When I debug the code, it seems that
OwnSignatureResolver::getSigningCredential()
returns a credential without a private key. When debugging any further, thecredentialResolver
has three potential credentials (all have the same certificate, but only the last has a private key):I am not really sure, where the first two credentials come from.
Do have any clue?
Regards,
Marcel
The text was updated successfully, but these errors were encountered: