Skip to Content.
Sympa Menu

mace-opensaml-users - RE: Getting Exception: There are multiple occurrences of ID value

Subject: OpenSAML user discussion

List archive

RE: Getting Exception: There are multiple occurrences of ID value


Chronological Thread 
  • From: "Gitesh Malik" <>
  • To: <>
  • Subject: RE: Getting Exception: There are multiple occurrences of ID value
  • Date: Wed, 10 Jan 2007 12:43:26 +0530

Scott, here is the code jar we are using.

From code decompilation I could figure out that SAMLIdentifier is indeed
a class -

Here is the code for the same:

package org.opensaml;

import java.security.SecureRandom;

public class SAMLIdentifier
{

protected StringBuffer id;

public SAMLIdentifier()
{
id = new StringBuffer();
byte abyte0[] = new byte[32];
SecureRandom securerandom = new SecureRandom();
do
{
securerandom.nextBytes(abyte0);
} while((abyte0[0] & 0xf) < 10);
for(int i = 0; i < 32; i++)
{
id.append(Character.forDigit(abyte0[i] & 0xf, 16));
}

}

public String toString()
{
return id.toString();
}
}

Hence the code compiles and I can see valid SAMLIDentifier being
generated in my code.

<gitesh/>

-----Original Message-----
From: Scott Cantor
[mailto:]

Sent: Tuesday, January 09, 2007 8:44 PM
To:

Subject: RE: Getting Exception: There are multiple occurrences of ID
value

> Scott, I had put in a hack in my code to ensure that
> samlResponse id and assertion id are not same and even If they - a new
> SAMLidentifier value should be set up as responseid. However there
seem
> to be issue with this as well as an attempt to generate a new SAML
> identifier does not create a new one. (Attached short code and short
> error log)

I don't know what code you're using, but it's not OpenSAML 1.1.
SAMLIdentifier is an interface, so "new SAMLIdentifier()" would never
compile. That sounds like old code. That doesn't explain the problem,
but
it's not current code either.

I honestly don't know what to tell you...the problem must be
environmental,
with your random number generation. There just isn't anything else I can
do
for you.

OpenSAML 1.1 has a pluggable ID generation interface. Just plug in your
own.

-- Scott



Attachment: opensaml.jar
Description: opensaml.jar

The OpenSAML License, Version 1.
Copyright (c) 2002
University Corporation for Advanced Internet Development, Inc.
All rights reserved


Redistribution and use in source and binary forms, with or without
modification, are permitted provided that the following conditions are met:

Redistributions of source code must retain the above copyright notice, this
list of conditions and the following disclaimer.

Redistributions in binary form must reproduce the above copyright notice,
this list of conditions and the following disclaimer in the documentation
and/or other materials provided with the distribution, if any, must include
the following acknowledgment: "This product includes software developed by
the University Corporation for Advanced Internet Development
<http://www.ucaid.edu>Internet2 Project. Alternately, this acknowledegement
may appear in the software itself, if and wherever such third-party
acknowledgments normally appear.

Neither the name of OpenSAML nor the names of its contributors, nor
Internet2, nor the University Corporation for Advanced Internet Development,
Inc., nor UCAID may be used to endorse or promote products derived from this
software without specific prior written permission. For written permission,
please contact


Products derived from this software may not be called OpenSAML, Internet2,
UCAID, or the University Corporation for Advanced Internet Development, nor
may OpenSAML appear in their name, without prior written permission of the
University Corporation for Advanced Internet Development.


THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS"
AND WITH ALL FAULTS. ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY, FITNESS FOR A
PARTICULAR PURPOSE, AND NON-INFRINGEMENT ARE DISCLAIMED AND THE ENTIRE RISK
OF SATISFACTORY QUALITY, PERFORMANCE, ACCURACY, AND EFFORT IS WITH LICENSEE.
IN NO EVENT SHALL THE COPYRIGHT OWNER, CONTRIBUTORS OR THE UNIVERSITY
CORPORATION FOR ADVANCED INTERNET DEVELOPMENT, INC. BE LIABLE FOR ANY DIRECT,
INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES
(INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;
LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND
ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
(INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS
SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.




Archive powered by MHonArc 2.6.16.

Top of Page