Error in Rest Application

Posted by Anuj Jain on 03-Jan-2017 05:29

Hi,

We are trying to implement security model appsecurity-basic-saml.xml for rest application. We made the changes according to openedge documentation

"https://documentation.progress.com/output/ua/OpenEdge_latest/index.html#page/asadm/creating-and-configuring-the-service-provider-me.html#"

We have updated web.xml file to use "appsecurity-basic-saml.xml" as default.

Changes in "appsecurity-basic-saml.xml" are :

1. Updated the following bean properties (highlighted in bold)

<b:bean id="keyManager" class="org.springframework.security.saml.key.JKSKeyManager">
<b:constructor-arg value="WEB-INF/keystore.jks"/>
<b:constructor-arg type="java.lang.String" value="password"/>
<b:constructor-arg>
<b:map>
<b:entry key="selfsigned" value="XXXXXX"/>
</b:map>
</b:constructor-arg>
<b:constructor-arg type="java.lang.String" value="selfsigned"/>
</b:bean>

2. We have updated Idp Metadata and SP metadata file in bean property

// for IdpMetadata

<b:bean class="org.opensaml.saml2.metadata.provider.FilesystemMetadataProvider">
<b:constructor-arg>
<!-- Replace Identity_Provider_Metadata.xml with actual IdP metadata file name -->
<b:value type="java.io.File">WEB-INF/onelogin_metadata_607xxx.xml</b:value>
</b:constructor-arg>
<b:property name="parserPool" ref="parserPool"/>
</b:bean>

// for SpMetadata

<b:bean class="org.opensaml.saml2.metadata.provider.FilesystemMetadataProvider">
<b:constructor-arg>
<!-- Replace Service_Provider_Metadata.xml with actual SP metadata file name -->
<b:value type="java.io.File">WEB-INF/SM_Metadata.xml</b:value>
</b:constructor-arg>
<b:property name="parserPool" ref="parserPool"/>
</b:bean>

3. Updated the following bean property (highlighted in bold)

<b:bean id="metadataGeneratorFilter"
class="org.springframework.security.saml.metadata.MetadataGeneratorFilter">
<b:constructor-arg>
<b:bean class="org.springframework.security.saml.metadata.MetadataGenerator">
<b:property name="signMetadata" value="false"/>
<b:property name="entityId" value="domainname:port/.../Temp"/>
<b:property name="entityBaseURL" value="domainname:port/.../Temp"/>
</b:bean>
</b:constructor-arg>
</b:bean>

We are getting this error: 

Are we missing any other changes that are required Please suggest..

OpenEdge : 11.4

OS : windows

Thanks in  advance,

Anuj J.

Posted by Srinivas Munigala on 03-Jan-2017 06:22

Hi Anuj,
 
Can you un-comment following line in $CATALINA_HOME/webapps/<ServiceName>/WEB-INF/classes/log4j.properties file to see the SAML protocol request and response messages exchange between REST Adapter and IdP
 
log4j.logger.PROTOCOL_MESSAGE=DEBUG, <ServiceName>
 
Also check for the errors in service log file and share with us?
 
Thanks,
Srinivas Munigala
 

All Replies

Posted by Srinivas Munigala on 03-Jan-2017 06:22

Hi Anuj,
 
Can you un-comment following line in $CATALINA_HOME/webapps/<ServiceName>/WEB-INF/classes/log4j.properties file to see the SAML protocol request and response messages exchange between REST Adapter and IdP
 
log4j.logger.PROTOCOL_MESSAGE=DEBUG, <ServiceName>
 
Also check for the errors in service log file and share with us?
 
Thanks,
Srinivas Munigala
 

This thread is closed