Unable to load private key from file "\simplesamlphp/cert/"
2,330 views
Skip to first unread message
zzx1...@gmail.com
Jan 20, 2016, 1:59:11 AM1/20/16
to SimpleSAMLphp
hi,guys.I don't want to use https.Can you tell me how I can't use it.When I click on a protected link on the chrome, http://saml.dev/simplesaml/module.php/core/authenticate.php jumps to the idp.saml.dev host, which I think is right. But there was an error on the idp.saml.dev host.Backtrace: 1 E:\GITFILE\GITHUB\simplesamlphp\www\_include.php:43 (SimpleSAML_exception_handler) 0 [builtin] (N/A) Caused by: SimpleSAML_Error_Exception: Unable to load private key from file "E:\GITFILE\GITHUB\simplesamlphp/cert/" Backtrace: 8 E:\GITFILE\GITHUB\simplesamlphp\lib\SimpleSAML\Utils\Crypto.php:157 (SimpleSAML\Utils\Crypto::loadPrivateKey) 7 E:\GITFILE\GITHUB\simplesamlphp\modules\saml\lib\Message.php:27 (sspmod_saml_Message::addSign) 6 E:\GITFILE\GITHUB\simplesamlphp\modules\saml\lib\IdP\SAML2.php:1040 (sspmod_saml_IdP_SAML2::buildResponse) 5 E:\GITFILE\GITHUB\simplesamlphp\modules\saml\lib\IdP\SAML2.php:113 (sspmod_saml_IdP_SAML2::handleAuthError) 4 [builtin] (call_user_func) 3 E:\GITFILE\GITHUB\simplesamlphp\lib\SimpleSAML\Auth\State.php:342 (SimpleSAML_Auth_State::throwException) 2 E:\GITFILE\GITHUB\simplesamlphp\lib\SimpleSAML\IdP.php:419 (SimpleSAML_IdP::handleAuthenticationRequest) 1 E:\GITFILE\GITHUB\simplesamlphp\modules\saml\lib\IdP\SAML2.php:389 (sspmod_saml_IdP_SAML2::receiveAuthnRequest) 0 E:\GITFILE\GITHUB\simplesamlphp\www\saml2\idp\SSOService.php:19 (N/A)
Nate Klingenstein
Jan 20, 2016, 6:02:20 AM1/20/16
to simple...@googlegroups.com
Zzx11235,
This has nothing to do with https. This is the keypair and certificate that simpleSAMLphp, running as an IdP, would primarily use to sign outbound assertions. That will be needed whether or not you use https:// unless you want anyone to emulate any message from any IdP at your SP.
In order to be able to sign assertions, the IdP component must have access to the private key that you would like to sign with.
Take care,
Nate.
--
You received this message because you are subscribed to the Google Groups "SimpleSAMLphp" group.
To unsubscribe from this group and stop receiving emails from it, send an email to simplesamlph...@googlegroups.com.
To post to this group, send email to simple...@googlegroups.com.
Visit this group at https://groups.google.com/group/simplesamlphp.
For more options, visit https://groups.google.com/d/optout.
Peter Schober
Jan 20, 2016, 7:04:23 AM1/20/16
to SimpleSAMLphp
* zzx1...@gmail.com <zzx1...@gmail.com> [2016-01-20 07:59]:
https://simplesamlphp.org/docs/stable/simplesamlphp-idp
-peter
> 1 E:\GITFILE\GITHUB\simplesamlphp\www\_include.php:43 (SimpleSAML_exception_handler)
> 0 [builtin] (N/A)
> Caused by: SimpleSAML_Error_Exception: Unable to load private key from file "E:\GITFILE\GITHUB\simplesamlphp/cert/"
You seem to have missed step 4 or 5 in the IDP configuration instructions?
> 0 [builtin] (N/A)
> Caused by: SimpleSAML_Error_Exception: Unable to load private key from file "E:\GITFILE\GITHUB\simplesamlphp/cert/"
https://simplesamlphp.org/docs/stable/simplesamlphp-idp
-peter
zzx1...@gmail.com
Jan 20, 2016, 7:34:56 PM1/20/16
to SimpleSAMLphp
You mean I need PKI, is that so?
在 2016年1月20日星期三 UTC+8下午7:02:20,Nate Klingenstein写道:
在 2016年1月20日星期三 UTC+8下午7:02:20,Nate Klingenstein写道:
zzx1...@gmail.com
Jan 20, 2016, 7:36:36 PM1/20/16
to SimpleSAMLphp
All right, I'll watch it.Thank you very much.
在 2016年1月20日星期三 UTC+8下午7:02:20,Nate Klingenstein写道:
Zzx11235,
Reply all
Reply to author
Forward
0 new messages