As a idp how can I dump xml response (to send to sp), purpose: get info for debug

[ni199...@gmail.com]

Hi all,

I succeeded using SimpleSamlphp as an IdP to connect to Slack (as a SP), but when I implemented a elixir-version idp to connect to Slack, there is an 404 error as I post the response back to slack.

I doubt that the xml that I generated is not correct, so I want to dump the xml response to compare difference. My knowledge of php is not enough for me to get it done, so I am here to ask experts for help.

Thanks a lot in advance!

[Jaime Perez Crespo]

Hi,

Use a dedicated tool instead, it’ll be much easier:

https://addons.mozilla.org/en-US/firefox/addon/saml-tracer/
https://chrome.google.com/webstore/detail/saml-tracer/mpdajninpobndbfcldcmbpnnbhibjmch?hl=en

--
Jaime Pérez
Uninett / Feide

jaime...@uninett.no
jaime...@protonmail.com
9A08 EA20 E062 70B4 616B 43E3 562A FE3A 6293 62C2

"Two roads diverged in a wood, and I, I took the one less traveled by, and that has made all the difference."
- Robert Frost

[ni199...@gmail.com]

Thanks very much!!! I am trying the add-on you suggest

在 2018年7月30日星期一 UTC+8下午8:57:41，Jaime Pérez写道：

[Peter Schober]

* Jaime Perez Crespo <jaime...@uninett.no> [2018-07-30 14:57]:

> > I doubt that the xml that I generated is not correct, so I want to
> > dump the xml response to compare difference. My knowledge of php
> > is not enough for me to get it done, so I am here to ask experts
> > for help.
>

> Use a dedicated tool instead, it’ll be much easier:
>
> https://addons.mozilla.org/en-US/firefox/addon/saml-tracer/
> https://chrome.google.com/webstore/detail/saml-tracer/mpdajninpobndbfcldcmbpnnbhibjmch?hl=en

Thanks for re-writing or porting SAMLtracer to Chromium, btw.

Though with XML encryption that will not show you all the data.
(No idea whether the SP the OP is interested in even supports xmlenc.)

-peter

[ni199...@gmail.com]

I had a problem:  I found there is no xml in the tracer, I used the chrome one, is there any button or view that I missed? 

在 2018年7月30日星期一 UTC+8下午8:57:41，Jaime Pérez写道：

Hi,

[ni199...@gmail.com]

I finally found the response, thank you very much!!

在 2018年7月30日星期一 UTC+8下午9:13:23，ni199...@gmail.com写道：

[Peter Schober]

* ni199...@gmail.com <ni199...@gmail.com> [2018-07-30 15:13]:

> I had a problem: I found there is no xml in the tracer, I used the
> chrome one, is there any button or view that I missed?

For posterity: You'd have to look for lines with the orange "saml"
logo on the right-hand side of the request/respose entries, when you
then click on one of those lines there will appear a "SAML" tab in the
lower half of the extension window, clicking there the SAML protocol
message will be displayed decoded and pretty-printed.

-peter

[Jaime Perez Crespo]

On 30 Jul 2018, at 15:06 PM, Peter Schober <peter....@univie.ac.at> wrote:
> * Jaime Perez Crespo <jaime...@uninett.no> [2018-07-30 14:57]:
>>

>> Use a dedicated tool instead, it’ll be much easier:
>>
>> https://addons.mozilla.org/en-US/firefox/addon/saml-tracer/
>> https://chrome.google.com/webstore/detail/saml-tracer/mpdajninpobndbfcldcmbpnnbhibjmch?hl=en
>
> Thanks for re-writing or porting SAMLtracer to Chromium, btw.

Kudos go to Jan Köhler (1), who has been a huge help lately. Almost every single line of code in the extension nowadays is thanks to him.

> Though with XML encryption that will not show you all the data.
> (No idea whether the SP the OP is interested in even supports xmlenc.)

Right, but I’d bet that 99.99999% of the people in need to debug a SAML deployment because something is not working is definitely *not* using encryption.

(1) https://github.com/khlr