SAML message intended destination endpoint
1,841 views
Skip to first unread message
Saeed Pater-Rov
Aug 4, 2011, 3:27:47 PM8/4/11
to us...@shibboleth.net
Hello. I fixed the redirect issue with
InCommon and now get this message in the logs. Any ideas?
15:25:46.682 - INFO [Shibboleth-Access:74] - 20110804T192546Z|127.0.0.1|localhost:8080|/profile/SAML2/Redirect/SSO|
15:25:46.684 - ERROR [org.opensaml.common.binding.decoding.BaseSAMLMessageDecoder:215] - SAML message intended destination endpoint 'https://idp.american.edu/idp/profile/SAML2/Redirect/SSO' did not match the recipient endpoint 'http://localhost:8080/idp//profile/SAML2/Redirect/SSO'
15:25:46.685 - WARN [edu.internet2.middleware.shibboleth.idp.profile.saml2.SSOProfileHandler:348] - Message did not meet security requirements
org.opensaml.xml.security.SecurityException: SAML message intended destination endpoint did not match recipient endpoint
15:25:46.682 - INFO [Shibboleth-Access:74] - 20110804T192546Z|127.0.0.1|localhost:8080|/profile/SAML2/Redirect/SSO|
15:25:46.684 - ERROR [org.opensaml.common.binding.decoding.BaseSAMLMessageDecoder:215] - SAML message intended destination endpoint 'https://idp.american.edu/idp/profile/SAML2/Redirect/SSO' did not match the recipient endpoint 'http://localhost:8080/idp//profile/SAML2/Redirect/SSO'
15:25:46.685 - WARN [edu.internet2.middleware.shibboleth.idp.profile.saml2.SSOProfileHandler:348] - Message did not meet security requirements
org.opensaml.xml.security.SecurityException: SAML message intended destination endpoint did not match recipient endpoint
Mailvaganam, Hari
Aug 4, 2011, 3:41:18 PM8/4/11
to Shib Users
Does your IdP's metadata have reference to the 'localhost' path shown in the log message below?
From: users-...@shibboleth.net [users-...@shibboleth.net] on behalf of Saeed Pater-Rov [pate...@american.edu]
Sent: Thursday, August 04, 2011 12:27 PM
To: us...@shibboleth.net
Subject: SAML message intended destination endpoint
Sent: Thursday, August 04, 2011 12:27 PM
To: us...@shibboleth.net
Subject: SAML message intended destination endpoint
jayashree ravi
Aug 4, 2011, 5:29:15 PM8/4/11
to us...@shibboleth.net
REMOVE ME
From: hari.mai...@ubc.ca
To: us...@shibboleth.net
Subject: RE: SAML message intended destination endpoint
Date: Thu, 4 Aug 2011 19:41:18 +0000
From: hari.mai...@ubc.ca
To: us...@shibboleth.net
Subject: RE: SAML message intended destination endpoint
Date: Thu, 4 Aug 2011 19:41:18 +0000
--
To unsubscribe from this list send an email to users-un...@shibboleth.net
jayashree ravi
Aug 4, 2011, 5:29:42 PM8/4/11
to us...@shibboleth.net
Saeed Pater-Rov
Aug 4, 2011, 10:31:54 PM8/4/11
to Shib Users
I had the proxy pass incorrect. It's working
now thanks.
org.opensaml.xml.security.SecurityException: SAML message intended destination endpoint did not match recipient endpoint--
org.opensaml.xml.security.SecurityException: SAML message intended destination endpoint did not match recipient endpoint--
Reply all
Reply to author
Forward
0 new messages