SimpleSAML_Error_Error: UNHANDLEDEXCEPTION
2,822 views
Skip to first unread message
Louis DeWeaver III
Jan 17, 2014, 7:54:17 AM1/17/14
to simple...@googlegroups.com
I get the error below when I try to goto the site https://10.10.7.99/simplesamlphp/saml2/idp/SSOService.php. Im also unable to make the url work to download the metadata from my server
SimpleSAML_Error_Error: UNHANDLEDEXCEPTION
Backtrace: 1 /usr/share/simplesamlphp/www/_include.php:37 (SimpleSAML_exception_handler) 0 [builtin] (N/A) Caused by: Exception: Could not find any default metadata entities in set [saml20-idp-hosted] for host [10.10.7.99 : 10.10.7.99/simplesamlphp] Backtrace: 1 /usr/share/simplesamlphp/lib/SimpleSAML/Metadata/MetaDataStorageHandler.php:230 (SimpleSAML_Metadata_MetaDataStorageHandler::getMetaDataCurrentEntityID) 0 /usr/share/simplesamlphp/www/saml2/idp/SSOService.php:17 (N/A)
Peter Schober
Jan 17, 2014, 8:27:32 AM1/17/14
to simple...@googlegroups.com
* Louis DeWeaver III <ldewea...@gmail.com> [2014-01-17 14:02]:
including a query parameter with a SAML2 authentication request from
an SP?
> Im also unable to make the url work to download the metadata from my
> server
But you can access https://10.10.7.99/simplesamlphp/ fine?
> Caused by: Exception: Could not find any default metadata entities
> in set [saml20-idp-hosted] for host [10.10.7.99 :
> 10.10.7.99/simplesamlphp]
Do you have metadata for your IdP configured there?
http://simplesamlphp.org/docs/stable/simplesamlphp-idp#section_4
Maybe like aproblem with the hostname/path for your SSP install.
Did you try setting 'baseurlpath' in config/config.php to the complete
(absolute) URL to your SSP instance?
-peter
> I get the error below when I try to goto the site
> https://10.10.7.99/simplesamlphp/saml2/idp/SSOService.php
Are you accessing this URL "as is" (as a test) or during SSO, i.e.,
> https://10.10.7.99/simplesamlphp/saml2/idp/SSOService.php
including a query parameter with a SAML2 authentication request from
an SP?
> Im also unable to make the url work to download the metadata from my
> server
> Caused by: Exception: Could not find any default metadata entities
> in set [saml20-idp-hosted] for host [10.10.7.99 :
> 10.10.7.99/simplesamlphp]
http://simplesamlphp.org/docs/stable/simplesamlphp-idp#section_4
Maybe like aproblem with the hostname/path for your SSP install.
Did you try setting 'baseurlpath' in config/config.php to the complete
(absolute) URL to your SSP instance?
-peter
Louis DeWeaver III
Jan 17, 2014, 8:50:16 AM1/17/14
to simple...@googlegroups.com, peter....@univie.ac.at
Yes i can access https://10.10.7.99/simplesamlphp/ fine.I am accessing this URL "as is" (as a test). I have the saml20-idp-hosted.php and saml20-sp-remote.php configured. I'm using simplesamlphp as my idp and or sp is off site they only support Service Provider (SP) initiated SSO. So our users will attempt to access a resource on the SP (i.e. the Life Suite application) and they are re-directed to our IdP for authentication. Upon successful authentication, our IdP will provide a SAML web SSO assertion for the user's federated identity back to the SP. I guess Im confused about the saml20-idp-hosted.php file and the setting 'baseurlpath' I have included them below. On my federation page my links for metadata have disappeared. See the pic attached
< ?php
$metadata['__DYNAMIC:1__'] = array(
// The hostname of the server (VHOST) that this SAML entity will use.
'host' => '10.10.7.99',
// X.509 key and certificate. Relative to the cert directory.
'privatekey' => 'star.healthplus.org.pem',
'certificate' => 'star.healthplus.org.crt',
'auth' => 'HPM-AUTH',
/*
* The interoperable SAML 2 profile specifies that attributes should be deliver$
* We therefore recommended enabling this in new installations. This can be don$
*/
'attributes.NameFormat' => 'urn:oasis:names:tc:SAML:2.0:attrname-format:uri',
'authproc' => array(
// Convert LDAP names to oids.
100 => array('class' => 'core:AttributeMap', 'name2oid'),
* Please note that simpleSAMLphp will then redirect all queries to the
* external url, no matter where you come from (direct access or via the
* reverse proxy).
*/
'baseurlpath' => 'simplesamlphp/',
'certdir' => '/etc/ssl/certs/',
'loggingdir' => '/var/log/simplesamlphp/',
'datadir' => '/var/lib/simplesamlphp/data/',
'metadatadir' => '/etc/simplesamlphp/metadata/',
Thijs Kinkhorst
Jan 20, 2014, 9:06:06 AM1/20/14
to simple...@googlegroups.com
Op vrijdag 17 januari 2014 14:50:16 schreef Louis DeWeaver III:
mentioned URL directly, this will indeed lead to authentication errors. The
URL will be used as part of the authentication process, but has no use to be
accessed standalone without any session data.
If you want to do some testing, go to
https://10.10.7.99/simplesamlphp/module.php/core/authenticate.php
where you should be able to test the authentication sources you configured.
--
Thijs Kinkhorst <th...@uvt.nl> – LIS Unix
Universiteit van Tilburg – Library and IT Services • Postbus 90153, 5000 LE
Bezoekadres > Warandelaan 2 • Tel. 013 466 3035 • G 236 • http://www.uvt.nl
>>> I get the error below when I try to goto the site
>>> https://10.10.7.99/simplesamlphp/saml2/idp/SSOService.php
>>> https://10.10.7.99/simplesamlphp/saml2/idp/SSOService.php
> Yes i can access https://10.10.7.99/simplesamlphp/ fine.I am accessing this
> URL "as is" (as a test).
Well, that explains your problem. You should not just access the above
> URL "as is" (as a test).
mentioned URL directly, this will indeed lead to authentication errors. The
URL will be used as part of the authentication process, but has no use to be
accessed standalone without any session data.
If you want to do some testing, go to
https://10.10.7.99/simplesamlphp/module.php/core/authenticate.php
where you should be able to test the authentication sources you configured.
--
Thijs Kinkhorst <th...@uvt.nl> – LIS Unix
Universiteit van Tilburg – Library and IT Services • Postbus 90153, 5000 LE
Bezoekadres > Warandelaan 2 • Tel. 013 466 3035 • G 236 • http://www.uvt.nl
Peter Schober
Jan 20, 2014, 9:27:52 AM1/20/14
to simple...@googlegroups.com
* Thijs Kinkhorst <th...@uvt.nl> [2014-01-20 15:06]:
though, and he'd not get the unhandled exception "Could not find any
default metadata entities". Just saying.
-peter
> Op vrijdag 17 januari 2014 14:50:16 schreef Louis DeWeaver III:
> >>> I get the error below when I try to goto the site
> >>> https://10.10.7.99/simplesamlphp/saml2/idp/SSOService.php
>
> > Yes i can access https://10.10.7.99/simplesamlphp/ fine.I am accessing this
> > URL "as is" (as a test).
>
> Well, that explains your problem. You should not just access the above
> mentioned URL directly, this will indeed lead to authentication errors. The
> URL will be used as part of the authentication process, but has no use to be
> accessed standalone without any session data.
If that were the only problem the error message would be different,
> >>> I get the error below when I try to goto the site
> >>> https://10.10.7.99/simplesamlphp/saml2/idp/SSOService.php
>
> > Yes i can access https://10.10.7.99/simplesamlphp/ fine.I am accessing this
> > URL "as is" (as a test).
>
> Well, that explains your problem. You should not just access the above
> mentioned URL directly, this will indeed lead to authentication errors. The
> URL will be used as part of the authentication process, but has no use to be
> accessed standalone without any session data.
though, and he'd not get the unhandled exception "Could not find any
default metadata entities". Just saying.
-peter
Reply all
Reply to author
Forward
0 new messages