help with SAML rule

37 views
Skip to first unread message

Alexi Pascual

unread,
Oct 7, 2020, 4:42:18 PM10/7/20
to CAS Community

Hello,

We are implementing an access rule in cas 6.0.8. The SP requires specific names (urn) to integrate. For example, the current rule delivers:

            <saml2:Attribute FriendlyName="email" Name="email"
                NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:unspecified">
                <saml2:AttributeValue>ext-...@xxx.cl</saml2:AttributeValue>
            </saml2:Attribute>

and they request us:

            <saml2:Attribute FriendlyName="email" Name="urn:oid: 0.9.2342.19200300.100.1.3 "
                NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:unspecified">
                <saml2:AttributeValue>ext-...@xxx.cl</saml2:AttributeValue>
            </saml2:Attribute>


Some of you have experience in creating these specific rules, and you can help me.

thanks,

-- 
Alexi Pascual

Alexi Pascual

unread,
Oct 7, 2020, 5:31:58 PM10/7/20
to cas-...@apereo.org

When entering the urn attribute names, the following error is displayed:

2020-10-07 18:16:48,464 ERROR [org.jasig.cas.client.util.XmlUtils] - <Element or attribute do not match QName production: QName::=(NCName':')?NCName.>
org.xml.sax.SAXParseException: Element or attribute do not match QName production: QName::=(NCName':')?NCName.

I found the following information about it.

https://groups.google.com/a/apereo.org/forum/#!topic/cas-user/fc_biQnh1l4

Any of you know, if this bug has been fixed in version 6.0.8.1?

--
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
---
You received this message because you are subscribed to the Google Groups "CAS Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email to cas-user+u...@apereo.org.
To view this discussion on the web visit https://groups.google.com/a/apereo.org/d/msgid/cas-user/00c458e9-36cc-07e5-8464-465b264900dc%40uc.cl.
-- 
Alexi Pascual García
Jefe de Arquitectura e Integración
Subdirección de Operaciones y Plataforma
Dirección de Informática
Pontificia Universidad Católica de Chile
Teléfono: (56 2) 2354 5759
Reply all
Reply to author
Forward
0 new messages