Problem with SSO (I can't access acs URL)
94 views
Skip to first unread message
Message has been deleted
strangelove
Jun 20, 2008, 6:43:28 AM6/20/08
to Google Apps APIs
Hi ~
Whenever I am trying to access acs URL, I am getting error -
"Google Apps - This account cannot be accessed because your login
request contained no recipient information. Please log in and try
again."
Can you please check the following SAML Response and
suggest me if anything wrong with this SAML response.
--> SSO Server is my local computer (Windows XP) in South Korea.
I'm using SSO .NET sample code.
(http://code.google.com/p/google-apps-sso-sample/downloads/list)
==============================================
SAML Response
<samlp:Response ID="gemobdonfckcfbemhjpiiabbcihppafhgpekeaad"
IssueInstant="2008-06-20T19:23:38Z" Version="2.0"
xmlns="urn:oasis:names:tc:SAML:2.0:assertion"
xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:xenc="http://
www.w3.org/2001/04/xmlenc#"><Signature xmlns="http://www.w3.org/
2000/09/xmldsig#"><SignedInfo><CanonicalizationMethod
Algorithm="http://www.w3.org/TR/2001/REC-xml-c14n-20010315" /
><SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-
sha1" /><Reference URI=""><Transforms><Transform Algorithm="http://
www.w3.org/2000/09/xmldsig#enveloped-signature" /></
Transforms><DigestMethod Algorithm="http://www.w3.org/2000/09/
xmldsig#sha1" /><DigestValue>L+d+lvbYbEaP1jZqcE7iFY5o6S4=</
DigestValue></Reference></
SignedInfo><SignatureValue>NfEHbr8yORNjJ3ACD1edwsLb9Cwbfcjw9h4LrrjA4f1+fDxQ5TtVVobrmYkM
+K6nbRymWeNEhLKkebiioZaDqjodOq33dyFdncNTBiyk3MEyKcICW06EPUdQVpUJ/
3df33UN7K/vJpndUjCy1hK/z6VM8Gi2Teu4HTeKBVsuJG0=</
SignatureValue><KeyInfo><KeyValue><RSAKeyValue><Modulus>n
+wrN6tuAhJwz7EtwfGNgkSr5nDp28tyeo2xVJjgRUfh1/
EBXgfsznr24f2Bc18RIHAfiSuBiKlvOlc4wc8dqsZrBQY4KATzJTZY82/
mDuYM0jxzC0pA0ABOhyM2HdrzqmvcOB0YhFQlrfgCAjDBFNZmn3IRrqCBUsqWHoJ2pvs=</
Modulus><Exponent>AQAB</Exponent></RSAKeyValue></KeyValue></KeyInfo></
Signature><samlp:Status><samlp:StatusCode
Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></
samlp:Status><Assertion ID="mlmlfenflkdladcmiloikgbodabcjfkmadkefalk"
IssueInstant="2003-04-17T00:46:02Z" Version="2.0"
xmlns="urn:oasis:names:tc:SAML:2.0:assertion"><Issuer>https://
www.opensaml.org/IDP
</Issuer><Subject><NameID Format="urn:oasis:names:tc:SAML:
2.0:nameid-format:emailAddress">u2island</NameID><SubjectConfirmation
Method="urn:oasis:names:tc:SAML:2.0:cm:bearer" /></Subject><Conditions
NotBefore="2008-06-18T19:23:38Z"
NotOnOrAfter="2008-06-22T19:23:38Z"></
Conditions><AuthnStatement
AuthnInstant="2008-06-20T19:23:38Z"><AuthnContext><AuthnContextClassRef>
urn:oasis:names:tc:SAML:2.0:ac:classes:Password
</AuthnContextClassRef></AuthnContext></AuthnStatement></
Assertion></samlp:Response>
Whenever I am trying to access acs URL, I am getting error -
"Google Apps - This account cannot be accessed because your login
request contained no recipient information. Please log in and try
again."
Can you please check the following SAML Response and
suggest me if anything wrong with this SAML response.
--> SSO Server is my local computer (Windows XP) in South Korea.
I'm using SSO .NET sample code.
(http://code.google.com/p/google-apps-sso-sample/downloads/list)
==============================================
SAML Response
<samlp:Response ID="gemobdonfckcfbemhjpiiabbcihppafhgpekeaad"
IssueInstant="2008-06-20T19:23:38Z" Version="2.0"
xmlns="urn:oasis:names:tc:SAML:2.0:assertion"
xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:xenc="http://
www.w3.org/2001/04/xmlenc#"><Signature xmlns="http://www.w3.org/
2000/09/xmldsig#"><SignedInfo><CanonicalizationMethod
Algorithm="http://www.w3.org/TR/2001/REC-xml-c14n-20010315" /
><SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-
sha1" /><Reference URI=""><Transforms><Transform Algorithm="http://
www.w3.org/2000/09/xmldsig#enveloped-signature" /></
Transforms><DigestMethod Algorithm="http://www.w3.org/2000/09/
xmldsig#sha1" /><DigestValue>L+d+lvbYbEaP1jZqcE7iFY5o6S4=</
DigestValue></Reference></
SignedInfo><SignatureValue>NfEHbr8yORNjJ3ACD1edwsLb9Cwbfcjw9h4LrrjA4f1+fDxQ5TtVVobrmYkM
+K6nbRymWeNEhLKkebiioZaDqjodOq33dyFdncNTBiyk3MEyKcICW06EPUdQVpUJ/
3df33UN7K/vJpndUjCy1hK/z6VM8Gi2Teu4HTeKBVsuJG0=</
SignatureValue><KeyInfo><KeyValue><RSAKeyValue><Modulus>n
+wrN6tuAhJwz7EtwfGNgkSr5nDp28tyeo2xVJjgRUfh1/
EBXgfsznr24f2Bc18RIHAfiSuBiKlvOlc4wc8dqsZrBQY4KATzJTZY82/
mDuYM0jxzC0pA0ABOhyM2HdrzqmvcOB0YhFQlrfgCAjDBFNZmn3IRrqCBUsqWHoJ2pvs=</
Modulus><Exponent>AQAB</Exponent></RSAKeyValue></KeyValue></KeyInfo></
Signature><samlp:Status><samlp:StatusCode
Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></
samlp:Status><Assertion ID="mlmlfenflkdladcmiloikgbodabcjfkmadkefalk"
IssueInstant="2003-04-17T00:46:02Z" Version="2.0"
xmlns="urn:oasis:names:tc:SAML:2.0:assertion"><Issuer>https://
www.opensaml.org/IDP
</Issuer><Subject><NameID Format="urn:oasis:names:tc:SAML:
2.0:nameid-format:emailAddress">u2island</NameID><SubjectConfirmation
Method="urn:oasis:names:tc:SAML:2.0:cm:bearer" /></Subject><Conditions
NotBefore="2008-06-18T19:23:38Z"
NotOnOrAfter="2008-06-22T19:23:38Z"></
Conditions><AuthnStatement
AuthnInstant="2008-06-20T19:23:38Z"><AuthnContext><AuthnContextClassRef>
urn:oasis:names:tc:SAML:2.0:ac:classes:Password
</AuthnContextClassRef></AuthnContext></AuthnStatement></
Assertion></samlp:Response>
swtet
Jun 20, 2008, 11:47:27 AM6/20/08
to Google Apps APIs
I am also having this issue with a domain that was working fine
previously. Has something changed on the Google side?
previously. Has something changed on the Google side?
Alex (Google)
Jun 20, 2008, 12:50:00 PM6/20/08
to Google Apps APIs
Hi,
Can you both let us know what your domains are? There was a change
yesterday on our side, but we tried to make it only for new SSO
domains. Once I have your domain name, I can revert the change for
your domain.
I'll post the details of the change in a new thread later today.
-alex
Can you both let us know what your domains are? There was a change
yesterday on our side, but we tried to make it only for new SSO
domains. Once I have your domain name, I can revert the change for
your domain.
I'll post the details of the change in a new thread later today.
-alex
strangelove
Jun 20, 2008, 11:20:16 PM6/20/08
to Google Apps APIs
I sent you E-mail. Thank you for your help!
I'll wainting your post...
I'll wainting your post...
h2k7
Jun 24, 2008, 3:25:11 PM6/24/08
to Google Apps APIs
Hi Alex,
I am running the java version of the Saml Test Tool and also got this
error since yesterday (6/23). Previously, the same application was
working fine.
"Google Apps - This service cannot be accessed because your login
downloaded from Google App website.
Provider Name - google.com
ACS URL - https://www.google.com/a/psosamldemo.net/acs
User: demo...@psosamldemo.net
Please advice once it is fixed.
Thanks a lot.
h2k7
I am running the java version of the Saml Test Tool and also got this
error since yesterday (6/23). Previously, the same application was
working fine.
"Google Apps - This service cannot be accessed because your login
request contained no recipient information. Please log in and try
again."
I am just using the provided username from the sample application
again."
downloaded from Google App website.
Provider Name - google.com
ACS URL - https://www.google.com/a/psosamldemo.net/acs
User: demo...@psosamldemo.net
Please advice once it is fixed.
Thanks a lot.
h2k7
Alex (Google)
Jun 24, 2008, 3:33:47 PM6/24/08
to Google Apps APIs
Hi,
Can you try the updated sample code?
http://code.google.com/apis/apps/libraries_and_samples.html#sso
-alex
On Jun 24, 12:25 pm, h2k7 <h2k7.2...@gmail.com> wrote:
> Hi Alex,
>
> I am running the java version of the Saml Test Tool and also got this
> error since yesterday (6/23). Previously, the same application was
> working fine.
> "Google Apps - This service cannot be accessed because your login
> request contained no recipient information. Please log in and try
> again."
>
> I am just using the provided username from the sample application
> downloaded from Google App website.
>
> Provider Name - google.com
> ACS URL -https://www.google.com/a/psosamldemo.net/acs
> User: demou...@psosamldemo.net
Can you try the updated sample code?
http://code.google.com/apis/apps/libraries_and_samples.html#sso
-alex
On Jun 24, 12:25 pm, h2k7 <h2k7.2...@gmail.com> wrote:
> Hi Alex,
>
> I am running the java version of the Saml Test Tool and also got this
> error since yesterday (6/23). Previously, the same application was
> working fine.
> "Google Apps - This service cannot be accessed because your login
> request contained no recipient information. Please log in and try
> again."
>
> I am just using the provided username from the sample application
> downloaded from Google App website.
>
> Provider Name - google.com
> ACS URL -https://www.google.com/a/psosamldemo.net/acs
h2k7
Jun 25, 2008, 5:58:35 PM6/25/08
to Google Apps APIs
Alex,
Thanks for the update. It's working now.
h2k7
Thanks for the update. It's working now.
h2k7
RNBY
Jun 27, 2008, 11:56:30 AM6/27/08
to Google Apps APIs
I had the same problem.
I updated the code with the url you gave and now I am getting a
diffferent error:
The system cannot find the file specified.
Description: An unhandled exception occurred during the execution of
the current web request. Please review the stack trace for more
information about the error and where it originated in the code.
Exception Details:
System.Security.Cryptography.CryptographicException: The system cannot
find the file specified.
Line 110: string actionUrl;
Line 111:
Line 112: SamlParser.CreateSignedResponse(
Line 113: samlRequest, userName, out responseXml,
out actionUrl);
Line 114:
Here is my url querystring
signin.aspx?
SAMLRequest=fVLda9swEH8f7H8QevdXIFsRsUvWUhboNtO4e9jbRT7HIvLJ08nJ9t9PcVraPqwgEJx
%2B9%2Fs43er6z2DFET0bR6Us0lwKJO1aQ
%2FtSPjZ3yZW8rj5%2BWDEMdlTrKfT0gL8n5CBiJ7GaH0o5eVIO2LAiGJBV0Gq7%2FnavFmmuRu
%2BC085Ksbkt5YEG3VHf9Q53uwPGA1o7AmwNjIe2H
%2BINRBH989nW4mxrwzzhhjgAhVjK86sk%2F5QsPjfFUi2XKi9%2BSVE
%2FKX0xdEnwnq3dBcTqa9PUSf1j28wER9Oi
%2Fx7Rpdw7t7eYajdIsWZGH6KdG0c8Dei36I9G4%2BPDfSn7EEZWWXY6ndKXpgyyPZBhD2hTwpCB5nOOGpjNMfJ3YBllNQ9Xzfn8q6m
%2B7x6e%2FcjqRXGVvaKqnj7tnGVzWztr9F%2BxttadbjxCiPrBTyjFnfMDhP
%2BrFWkxV0ybdDNUTcQjatMZbKXIqovq2%2B2IO%2FMP&RelayState=https%3A%2F
%2Fwww.google.com%2Fa%2Fganisrael.net%2FServiceLogin%3Fservice%3Dmail
%26passive%3Dtrue%26rm%3Dfalse%26continue%3Dhttps%253A%252F
%252Fmail.google.com%252Fa%252Fganisrael.net%252F%26bsv%3D1k96igf4806cy
%26ltmpl%3Ddefault%26ltmplcache%3D2
Here is the stack trace
Stack Trace:
[CryptographicException: The system cannot find the file specified.
]
System.Security.Cryptography.CryptographicException.ThrowCryptogaphicException(Int32
hr) +33
System.Security.Cryptography.X509Certificates.X509Utils._QueryCertFileType(String
fileName) +0
System.Security.Cryptography.X509Certificates.X509Certificate.LoadCertificateFromFile(String
fileName, Object password, X509KeyStorageFlags keyStorageFlags) +94
System.Security.Cryptography.X509Certificates.X509Certificate2..ctor(String
fileName, String password) +128
Google.Apps.SingleSignOn.XmlDocumentSigner.LoadRsaKey() in C:
\projects\googleapps\cs\samlResponse\cs\Google.Apps.SingleSignOn\src
\XmlDocumentSigner.cs:62
Google.Apps.SingleSignOn.XmlDocumentSigner.Sign(XmlDocument doc) in
C:\projects\googleapps\cs\samlResponse\cs\Google.Apps.SingleSignOn\src
\XmlDocumentSigner.cs:31
Google.Apps.SingleSignOn.SamlParser.CreateSignedResponse(String
packedSamlRequest, String userName, String& responseXml, String&
actionUrl) in C:\projects\googleapps\cs\samlResponse\cs
\Google.Apps.SingleSignOn\src\SamlParser.cs:123
Google.Apps.SingleSignOn.Web.SignIn.GoogleSignIn(String userName)
in c:\Inetpub\wwwroot\Chabad.org\dynamic\mychabad\Email\MyEmail
\SignIn.aspx.cs:112
Google.Apps.SingleSignOn.Web.SignIn.checkUser() in c:\Inetpub
\wwwroot\Chabad.org\dynamic\mychabad\Email\MyEmail\SignIn.aspx.cs:50
Google.Apps.SingleSignOn.Web.SignIn.Page_Load(Object sender,
EventArgs e) in c:\Inetpub\wwwroot\Chabad.org\dynamic\mychabad\Email
\MyEmail\SignIn.aspx.cs:38
System.Web.Util.CalliHelper.EventArgFunctionCaller(IntPtr fp,
Object o, Object t, EventArgs e) +15
System.Web.Util.CalliEventHandlerDelegateProxy.Callback(Object
sender, EventArgs e) +33
System.Web.UI.Control.OnLoad(EventArgs e) +99
System.Web.UI.Control.LoadRecursive() +47
System.Web.UI.Page.ProcessRequestMain(Boolean
includeStagesBeforeAsyncPoint, Boolean includeStagesAfterAsyncPoint)
+1436
Version Information: Microsoft .NET Framework Version:2.0.50727.1433;
ASP.NET Version:2.0.50727.1433
THANKS
RNBY
I updated the code with the url you gave and now I am getting a
diffferent error:
The system cannot find the file specified.
Description: An unhandled exception occurred during the execution of
the current web request. Please review the stack trace for more
information about the error and where it originated in the code.
Exception Details:
System.Security.Cryptography.CryptographicException: The system cannot
find the file specified.
Line 110: string actionUrl;
Line 111:
Line 112: SamlParser.CreateSignedResponse(
Line 113: samlRequest, userName, out responseXml,
out actionUrl);
Line 114:
Here is my url querystring
signin.aspx?
SAMLRequest=fVLda9swEH8f7H8QevdXIFsRsUvWUhboNtO4e9jbRT7HIvLJ08nJ9t9PcVraPqwgEJx
%2B9%2Fs43er6z2DFET0bR6Us0lwKJO1aQ
%2FtSPjZ3yZW8rj5%2BWDEMdlTrKfT0gL8n5CBiJ7GaH0o5eVIO2LAiGJBV0Gq7%2FnavFmmuRu
%2BC085Ksbkt5YEG3VHf9Q53uwPGA1o7AmwNjIe2H
%2BINRBH989nW4mxrwzzhhjgAhVjK86sk%2F5QsPjfFUi2XKi9%2BSVE
%2FKX0xdEnwnq3dBcTqa9PUSf1j28wER9Oi
%2Fx7Rpdw7t7eYajdIsWZGH6KdG0c8Dei36I9G4%2BPDfSn7EEZWWXY6ndKXpgyyPZBhD2hTwpCB5nOOGpjNMfJ3YBllNQ9Xzfn8q6m
%2B7x6e%2FcjqRXGVvaKqnj7tnGVzWztr9F%2BxttadbjxCiPrBTyjFnfMDhP
%2BrFWkxV0ybdDNUTcQjatMZbKXIqovq2%2B2IO%2FMP&RelayState=https%3A%2F
%2Fwww.google.com%2Fa%2Fganisrael.net%2FServiceLogin%3Fservice%3Dmail
%26passive%3Dtrue%26rm%3Dfalse%26continue%3Dhttps%253A%252F
%252Fmail.google.com%252Fa%252Fganisrael.net%252F%26bsv%3D1k96igf4806cy
%26ltmpl%3Ddefault%26ltmplcache%3D2
Here is the stack trace
Stack Trace:
[CryptographicException: The system cannot find the file specified.
]
System.Security.Cryptography.CryptographicException.ThrowCryptogaphicException(Int32
hr) +33
System.Security.Cryptography.X509Certificates.X509Utils._QueryCertFileType(String
fileName) +0
System.Security.Cryptography.X509Certificates.X509Certificate.LoadCertificateFromFile(String
fileName, Object password, X509KeyStorageFlags keyStorageFlags) +94
System.Security.Cryptography.X509Certificates.X509Certificate2..ctor(String
fileName, String password) +128
Google.Apps.SingleSignOn.XmlDocumentSigner.LoadRsaKey() in C:
\projects\googleapps\cs\samlResponse\cs\Google.Apps.SingleSignOn\src
\XmlDocumentSigner.cs:62
Google.Apps.SingleSignOn.XmlDocumentSigner.Sign(XmlDocument doc) in
C:\projects\googleapps\cs\samlResponse\cs\Google.Apps.SingleSignOn\src
\XmlDocumentSigner.cs:31
Google.Apps.SingleSignOn.SamlParser.CreateSignedResponse(String
packedSamlRequest, String userName, String& responseXml, String&
actionUrl) in C:\projects\googleapps\cs\samlResponse\cs
\Google.Apps.SingleSignOn\src\SamlParser.cs:123
Google.Apps.SingleSignOn.Web.SignIn.GoogleSignIn(String userName)
in c:\Inetpub\wwwroot\Chabad.org\dynamic\mychabad\Email\MyEmail
\SignIn.aspx.cs:112
Google.Apps.SingleSignOn.Web.SignIn.checkUser() in c:\Inetpub
\wwwroot\Chabad.org\dynamic\mychabad\Email\MyEmail\SignIn.aspx.cs:50
Google.Apps.SingleSignOn.Web.SignIn.Page_Load(Object sender,
EventArgs e) in c:\Inetpub\wwwroot\Chabad.org\dynamic\mychabad\Email
\MyEmail\SignIn.aspx.cs:38
System.Web.Util.CalliHelper.EventArgFunctionCaller(IntPtr fp,
Object o, Object t, EventArgs e) +15
System.Web.Util.CalliEventHandlerDelegateProxy.Callback(Object
sender, EventArgs e) +33
System.Web.UI.Control.OnLoad(EventArgs e) +99
System.Web.UI.Control.LoadRecursive() +47
System.Web.UI.Page.ProcessRequestMain(Boolean
includeStagesBeforeAsyncPoint, Boolean includeStagesAfterAsyncPoint)
+1436
Version Information: Microsoft .NET Framework Version:2.0.50727.1433;
ASP.NET Version:2.0.50727.1433
THANKS
RNBY
Alex (Google)
Jun 27, 2008, 12:16:40 PM6/27/08
to Google Apps APIs
Hi,
It looks like it can't find the .pfx file it needs to sign the
SAMLResponse. Did you copy over the .pfx file you were using
before? You'll also need to make sure Web.config is pointing to this
file:
http://code.google.com/p/google-apps-sso-sample/source/browse/trunk/cs/Google.Apps.SingleSignOn/web/Web.config#5
-alex
It looks like it can't find the .pfx file it needs to sign the
SAMLResponse. Did you copy over the .pfx file you were using
before? You'll also need to make sure Web.config is pointing to this
file:
http://code.google.com/p/google-apps-sso-sample/source/browse/trunk/cs/Google.Apps.SingleSignOn/web/Web.config#5
-alex
Mauricio Moura
Jul 22, 2008, 4:46:23 PM7/22/08
to Google Apps APIs
HI, i´m trying to develop the SSO to my domain, and i´m geting the
same error (saving that it´s translated).
I´ve downloaded the sso-sample-1.0.1-java.zip and installed it, now i
´m trying to use it and get tha same error form the demouser @
psosamldemo.net.
Also i modified the code to validade my users and set it to may
domain, and didn´t work either,
I Already setup my keys and the cert at in the control panel of the
domain and actived sso to a intranet develop server.
Here is the error:
***************************************************************************************
Google Apps - Não foi possível acessar esta conta porque não
conseguimos confirmar as credenciais de login.
Ajuda|Sair
Não foi possível acessar esta conta porque não conseguimos confirmar
as credenciais de login.
Não foi possível processar a sua solicitação neste momento. Tente
novamente mais tarde.
Termos de Serviço-Política de Privacidade-Página inicial do Google
©2007 Google
***************************************************************************************
same error (saving that it´s translated).
I´ve downloaded the sso-sample-1.0.1-java.zip and installed it, now i
´m trying to use it and get tha same error form the demouser @
psosamldemo.net.
Also i modified the code to validade my users and set it to may
domain, and didn´t work either,
I Already setup my keys and the cert at in the control panel of the
domain and actived sso to a intranet develop server.
Here is the error:
***************************************************************************************
Google Apps - Não foi possível acessar esta conta porque não
conseguimos confirmar as credenciais de login.
Ajuda|Sair
Não foi possível acessar esta conta porque não conseguimos confirmar
as credenciais de login.
Não foi possível processar a sua solicitação neste momento. Tente
novamente mais tarde.
Termos de Serviço-Política de Privacidade-Página inicial do Google
©2007 Google
***************************************************************************************
> It looks like it can't find the .pfx file it needs to sign the
> SAMLResponse. Did you copy over the .pfx file you were using
> before? You'll also need to make sure Web.config is pointing to this
> file:
>
> http://code.google.com/p/google-apps-sso-sample/source/browse/trunk/c...
> SAMLResponse. Did you copy over the .pfx file you were using
> before? You'll also need to make sure Web.config is pointing to this
> file:
>
Julian (Google)
Jul 25, 2008, 5:16:40 AM7/25/08
to Google Apps APIs
Hi,
This error message usually indicates that there is a mismatch between
the public key certificate Google Apps has on file and the private key
used to sign the SAML Response.
Can you try uploading the public key certificate to the control panel
again?
Thanks,
Julian.
This error message usually indicates that there is a mismatch between
the public key certificate Google Apps has on file and the private key
used to sign the SAML Response.
Can you try uploading the public key certificate to the control panel
again?
Thanks,
Julian.
Mauricio Moura
Jul 25, 2008, 8:28:42 AM7/25/08
to Google Apps APIs
Hi Julian,
I did that testing with the public x509 certificate in asc ant the
public binary key. Both failed!
Once o read you reply i went trough the tutorial again and regenerate
the key in every way available.
http://code.google.com/support/bin/answer.py?answer=71864&topic=12142
Then for each i tested the public certificate file and key (except for
the JCA that dont generate public certificate, only keypair) , none
worked.
And the demo gives tha same errors when trying to log with the
demouser @ psosamldemo.net (using the keys that came with it).
I dunno if it´s something that isn´t enabled in my domain or if i´m
really bypassing any important step (tough i have triple checked every
step to be sure).
I´m using google apps Education Edition.
Thanks,
Mauricio Moura
I did that testing with the public x509 certificate in asc ant the
public binary key. Both failed!
Once o read you reply i went trough the tutorial again and regenerate
the key in every way available.
http://code.google.com/support/bin/answer.py?answer=71864&topic=12142
Then for each i tested the public certificate file and key (except for
the JCA that dont generate public certificate, only keypair) , none
worked.
And the demo gives tha same errors when trying to log with the
demouser @ psosamldemo.net (using the keys that came with it).
I dunno if it´s something that isn´t enabled in my domain or if i´m
really bypassing any important step (tough i have triple checked every
step to be sure).
I´m using google apps Education Edition.
Thanks,
Mauricio Moura
Julian (Google)
Jul 28, 2008, 9:27:54 AM7/28/08
to Google Apps APIs
Hi Mauricio,
Can you check that your system meet this requirements?
* Java 5 or later.
* Apache Ant 1.6 or later.
* Java Servlet API 2.4 or later.
* Apache Tomcat 5.5 or later (or equivalent).
Also, it would be a good idea just to generate our samples War file
and try it without modifying the keys.
We may need more specific information to troubleshoot the problem.
Please, submit a support request, instructions on contacting support
are in the control panel.
Thanks,
Julian.
On Jul 25, 1:28 pm, Mauricio Moura <mauriciosmo...@gmail.com> wrote:
> Hi Julian,
>
> I did that testing with the public x509 certificate in asc ant the
> public binary key. Both failed!
>
> Once o read you reply i went trough the tutorial again and regenerate
> the key in every way available.http://code.google.com/support/bin/answer.py?answer=71864&topic=12142
Can you check that your system meet this requirements?
* Java 5 or later.
* Apache Ant 1.6 or later.
* Java Servlet API 2.4 or later.
* Apache Tomcat 5.5 or later (or equivalent).
Also, it would be a good idea just to generate our samples War file
and try it without modifying the keys.
We may need more specific information to troubleshoot the problem.
Please, submit a support request, instructions on contacting support
are in the control panel.
Thanks,
Julian.
On Jul 25, 1:28 pm, Mauricio Moura <mauriciosmo...@gmail.com> wrote:
> Hi Julian,
>
> I did that testing with the public x509 certificate in asc ant the
> public binary key. Both failed!
>
> Once o read you reply i went trough the tutorial again and regenerate
Mauricio Moura
Jul 31, 2008, 9:35:37 AM7/31/08
to Google Apps APIs
Hi Julian,
Thanks for the Tips!
It worked, and the main problem was that i was not using TomCat,
instead i was using OC4J from Oracle.
Although the result is pratically the same in OC4J and TomCat, no
errors, with oc4j it doesn't authenticate.
Maybe it uses diferent versions of the ServLet library or a diferent
encoding perhaphs?
Thanks.
Mauricio Moura
PS: Sorry for my bad typos in my other post.
Thanks for the Tips!
It worked, and the main problem was that i was not using TomCat,
instead i was using OC4J from Oracle.
Although the result is pratically the same in OC4J and TomCat, no
errors, with oc4j it doesn't authenticate.
Maybe it uses diferent versions of the ServLet library or a diferent
encoding perhaphs?
Thanks.
Mauricio Moura
PS: Sorry for my bad typos in my other post.
Alex (Google)
Jul 31, 2008, 6:58:48 PM7/31/08
to Google Apps APIs
Hi Mauricio,
One other admin has reported problems with OC4J. We think it's
related to the XML libraries (for XML canonicalization) which come
with OC4J. Glad you got it working with Tomcat.
-alex
One other admin has reported problems with OC4J. We think it's
related to the XML libraries (for XML canonicalization) which come
with OC4J. Glad you got it working with Tomcat.
-alex
Reply all
Reply to author
Forward
0 new messages