New Request - Broken
Sept 26 16:03:10 removed-server-name simplesamlphp[13301]: 7 [6ce0cb2d3f] Loading state: '_3edde738bd226de8178373eca8ba20401f4f05a06b'
Sept 26 16:03:10 removed-server-name simplesamlphp[13301]: 3 [6ce0cb2d3f] SimpleSAML_Error_NoState: NOSTATE
Sept 26 16:03:10 removed-server-name simplesamlphp[13301]: 3 [6ce0cb2d3f] Backtrace:
Sept 26 16:03:10 removed-server-name simplesamlphp[13301]: 3 [6ce0cb2d3f] 2 /var/simplesamlphp/lib/SimpleSAML/Auth/State.php:263 (SimpleSAML_Auth_State::loadState)
Sept 26 16:03:10 removed-server-name simplesamlphp[13301]: 3 [6ce0cb2d3f] 1 /var/simplesamlphp/modules/saml/www/sp/saml2-acs.php:78 (require)
Sept 26 16:03:10 removed-server-name simplesamlphp[13301]: 3 [6ce0cb2d3f] 0 /var/simplesamlphp/www/module.php:137 (N/A)
Sept 26 16:03:10 removed-server-name simplesamlphp[13301]: 3 [6ce0cb2d3f] Error report with id 679470d6 generated.
Sept 26 16:03:10 removed-server-name simplesamlphp[13301]: 7 [6ce0cb2d3f] Template: Reading [/var/simplesamlphp/dictionaries/errors]
Sept 26 16:03:10 removed-server-name simplesamlphp[13301]: 7 [6ce0cb2d3f] Template: Reading [/var/simplesamlphp/modules/core/dictionaries/no_state]
Sept 26 16:03:10 removed-server-name simplesamlphp[13301]: 7 [6ce0cb2d3f] loading key SimpleSAMLphp.session.63cc7a3a6ef884dbab3ba0e0a0d17207 from memcache
Sept 26 16:03:10 removed-server-name simplesamlphp[13301]: 7 [6ce0cb2d3f] saving key SimpleSAMLphp.session.63cc7a3a6ef884dbab3ba0e0a0d17207 to memcache
New Request - Working
Sept 26 16:07:02 removed-server-name simplesamlphp[13309]: 7 [a673725620] Session: 'default-sp' not valid because we are not authenticated.
Sept 26 16:07:02 removed-server-name simplesamlphp[13309]: 7 [a673725620] Saved state: '_b555ae5a198d555c4c3f03c33551172cb2af171881'
Sept 26 16:07:02 removed-server-name simplesamlphp[13309]: 7 [a673725620] Sending SAML 2 AuthnRequest to 'https://my-idp
Sept 26 16:07:02 removed-server-name simplesamlphp[13309]: 7 [a673725620] Redirect to 746 byte URL: https://my-idp
Sept 26 16:07:02 removed-server-name simplesamlphp[13309]: 7 [a673725620] loading key SimpleSAMLphp.session.614d11772d7ac365fca443b27ebe354a from memcache
Sept 26 16:07:02 removed-server-name simplesamlphp[13309]: 7 [a673725620] key SimpleSAMLphp.session.614d11772d7ac365fca443b27ebe354a not found in memcache
Sept 26 16:07:02 removed-server-name simplesamlphp[13309]: 7 [a673725620] saving key SimpleSAMLphp.session.c8b498080e8895a28d17df79dd137084 to memcache
Sept 26 16:07:03 removed-server-name simplesamlphp[13300]: 7 [a673725620] Session: Valid session found with 'default-sp'.
Sept 26 16:07:03 removed-server-name simplesamlphp[13300]: 7 [a673725620] Session: Valid session found with 'default-sp'.
Sept 26 16:07:03 removed-server-name simplesamlphp[13300]: 7 [a673725620] Session: Valid session found with 'default-sp'.
Sept 26 16:07:03 removed-server-name simplesamlphp[13300]: 7 [a673725620] loading key SimpleSAMLphp.session.c8b498080e8895a28d17df79dd137084 from memcache
Authenticated elsewhere first - Working
Sept 26 16:13:16 removed-server-name simplesamlphp[13318]: 7 [78fc61e4d3] Loading state: '_f4204a52479a00582c9f803f447821f3423d8b5c77'
Sept 26 16:13:16 removed-server-name simplesamlphp[13318]: 7 [78fc61e4d3] Received SAML2 Response from 'https://my-idp
Sept 26 16:13:16 removed-server-name simplesamlphp[13318]: 7 [78fc61e4d3] Has 1 candidate keys for validation.
Sept 26 16:13:16 removed-server-name simplesamlphp[13318]: 7 [78fc61e4d3] Validation with key #0 succeeded.
Sept 26 16:13:16 removed-server-name simplesamlphp[13318]: 7 [78fc61e4d3] Has 1 candidate keys for validation.
Sept 26 16:13:16 removed-server-name simplesamlphp[13318]: 7 [78fc61e4d3] Validation with key #0 succeeded.
Sept 26 16:13:16 removed-server-name simplesamlphp[13318]: 7 [78fc61e4d3] loading key SimpleSAMLphp.saml.AssertionReceived._0a781ae83b8313c44403c815626a393a0b01857e5e from memcache
Sept 26 16:13:16 removed-server-name simplesamlphp[13318]: 7 [78fc61e4d3] key SimpleSAMLphp.saml.AssertionReceived._0a781ae83b8313c44403c815626a393a0b01857e5e not found in memcache
Sept 26 16:13:16 removed-server-name simplesamlphp[13318]: 7 [78fc61e4d3] saving key SimpleSAMLphp.saml.AssertionReceived._0a781ae83b8313c44403c815626a393a0b01857e5e to memcache
Sept 26 16:13:16 removed-server-name simplesamlphp[13318]: 7 [78fc61e4d3] saving key SimpleSAMLphp.saml.LogoutStore.6030c696c5eac66680bf216adfff7e7c59f91ed7:_eed1eff627e3e67863bda0816a934beef5abe8745c to memcache
Sept 26 16:13:16 removed-server-name simplesamlphp[13318]: 7 [78fc61e4d3] Filter config for https://my-idp->https://my-service-provider: array ( 0 => sspmod_core_Auth_Process_AttributeMap::__set_state(array( ), 'duplicate' => false, 'priority' => 50, )), 1 => sspmod_core_Auth_Process_LanguageAdaptor::__set_state(array( 'langattr' => 'preferredLanguage', 'priority' => 90, )),)
Sept 26 16:13:16 removed-server-name simplesamlphp[13318]: 7 [78fc61e4d3] Deleting state: '_f4204a52479a00582c9f803f447821f3423d8b5c77'
Sept 26 16:13:16 removed-server-name simplesamlphp[13318]: 7 [78fc61e4d3] Session: doLogin("default-sp")
Sept 26 16:13:16 removed-server-name simplesamlphp[13318]: 7 [78fc61e4d3] loading key SimpleSAMLphp.session.7b5b0ef10abbfca2ed67f4d9499d67b8 from memcache
Sept 26 16:13:16 removed-server-name simplesamlphp[13318]: 7 [78fc61e4d3] saving key SimpleSAMLphp.session.7b5b0ef10abbfca2ed67f4d9499d67b8 to memcache
I have looked through the suggested fixes here: https://simplesamlphp.org/docs/development/simplesamlphp-nostate and I don't believe any of those causes apply to us. We have another environment with and older version of simplesamlphp (1.13.x) and a postgres backend experiencing the same issues.
Users are reporting these errors while in the middle of using the service after already authenticating, first logging in, and while logging out. We are investigate other saml plugins in case the issue is not with simplesaml itself but the plugin not handling these errors properly.
Any idea's on what to try next?