Hi team,
I am trying to set up basic SAML legacy federation on my machine. In order to have both the SP and idp on my machine, I have installed 2 instances of SPS on my machine.
So both have different domains. However I am unable to complete the federation testing.
I am able to access the URL :
http:///www.idp.demo:82/affwebservices/assertionretriever and
http://www.sp.demo:84/affwebservices/assertionretrieverI get the success message. However the actual federation flow is not working.
I have protected the resource
http://www.sp.demo:84/spsample/protected/SPS2.html on the SP side. There is no .jsp file that I have protected in the SP side. However I feel that this should work though.
I have changed the proxyrules.xml file content as per the example template that uses the URI. Hence when I hit the unprotected resource on the SP side, it works fine. However when I hit the protected resource there are errors. (federation flow fails)
Errors are as below :
affwebserv.log
[5560/12524][Fri Oct 25 2019 15:21:51][AuthnRequest.java][ERROR][sm-FedClient-02890] sm-FedClient-02890 (40219353-64e26675-0747d1b7-a99fbc69-b4dc11dd-c1, ATHR_NO_PROVIDER_ID, , , )
[5560/12524][Fri Oct 25 2019 15:22:13][SAMLTunnelClient.java][ERROR][sm-FedClient-01660] sm-FedClient-01660 (com.netegrity.affiliateminder.webservices.saml2.l, getIdentityProviderInfoByID, java.lang.IllegalArgumentException: "Cannot parse bytes to a ProviderDataResponseData", , )
FWStracelog :
[10/25/2019][15:27:13][5560][12524][d6bf86c5-6329705e-eac06074-8ea2009e-c5c810e4][SAMLTunnelClient.java][getIdentityProviderInfoByID][Tunnel result code: 2.]
[10/25/2019][15:27:13][5560][12524][d6bf86c5-6329705e-eac06074-8ea2009e-c5c810e4][SAMLTunnelClient.java][getIdentityProviderInfoByID][Exception caught in class com.netegrity.affiliateminder.webservices.saml2.l, method getIdentityProviderInfoByID: java.lang.IllegalArgumentException: "Cannot parse bytes to a ProviderDataResponseData"]
[10/25/2019][15:27:13][5560][12524][d6bf86c5-6329705e-eac06074-8ea2009e-c5c810e4][SAML2Base.java][getIdentityProviderInfo][Tunnel client message: null.]
[10/25/2019][15:27:13][5560][12524][d6bf86c5-6329705e-eac06074-8ea2009e-c5c810e4][SAML2Base.java][getIdentityProviderInfo][Could not find identity provider information for idp: idp.demo.]
[10/25/2019][15:27:13][5560][12524][d6bf86c5-6329705e-eac06074-8ea2009e-c5c810e4][AuthnRequest.java][processRequest][SAML2 AuthnRequest Service get provider configuration failed. Unable to process requests.]
The time may not match but the error is always the same.
Also it could be great if you could let me know the URL that I can try for the idp initiated check.
Please help me that what should I check in order to resolve this?
------------------------------
Medha
------------------------------