mace-opensaml-users - C/Java API: troubles verifying assertions
Subject: OpenSAML user discussion
List archive
- From: "Cameron Morris" <>
- To: <>
- Subject: C/Java API: troubles verifying assertions
- Date: Wed, 04 Feb 2004 17:34:58 -0700
I read serveral posts about troubles with pretty-printing and signed
assertion verification. I get these errors when I try to validate:
1075940698 INFO SAML.SAMLInternalConfig init: library initialization
complete
1075940698 ERROR SAML.XML.ParserPool handleError: error on line 55,
column 28, message: Element 'Signature' is not valid for content model:
'(Conditions?,Advice?,ds:Signature?,((Statement|SubjectStatement|AuthenticationStatement|AuthorizationDecisionStatement|AttributeStatement))+)'
caught a SAML exception: <Status
xmlns="urn:oasis:names:tc:SAML:1.0:protocol"
xmlns:samlp="urn:oasis:names:tc:SAML:1.0:protocol"><StatusCode
Value="samlp:Responder"/><StatusMessage>XML::Parser detected an error
during parsing: Element 'Signature' is not valid for content model:
'(Conditions?,Advice?,ds:Signature?,((Statement|SubjectStatement|AuthenticationStatement|AuthorizationDecisionStatement|AttributeStatement))+)'</StatusMessage><StatusDetail><ExceptionClass
xmlns="http://www.opensaml.org";>org.opensaml.MalformedException</ExceptionClass></StatusDetail></Status>
1075940699 INFO SAML.SAMLInternalConfig term: library shutdown complete
or in Java I get:
org.xml.sax.SAXParseException: cvc-complex-type.2.4.a: Invalid content
starting with element 'ds:Signature'. One of
'{"urn:oasis:names:tc:SAML:1.0:assertion":Statement,
"urn:oasis:names:tc:SAML:1.0:assertion":SubjectStatement,
"urn:oasis:names:tc:SAML:1.0:assertion":AuthenticationStatement,
"urn:oasis:names:tc:SAML:1.0:assertion":AuthorizationDecisionStatement,
"urn:oasis:names:tc:SAML:1.0:assertion":AttributeStatement}' is
expected.
I tried to validate the assertion in my editor and I get the same error
- that ds:Signature is not an option in the SAML schema. I looked at
the SAML schema and it looks good. But when I try to validate the SAML
schema my editor doesn't like anything that references the XML signiture
schema.
Can someone enlighten me? I'm sure there is something silly I'm missing.
Thanks,
Cameron Morris
Novell, Inc., the leading provider of information solutions
http://www.novell.com
- C/Java API: troubles verifying assertions, Cameron Morris, 02/04/2004
- RE: C/Java API: troubles verifying assertions, Scott Cantor, 02/04/2004
- <Possible follow-up(s)>
- C/Java API: troubles verifying assertions, Cameron Morris, 02/10/2004
Archive powered by MHonArc 2.6.16.