mace-opensaml-users - [OpenSAML] NPE whil loading IDP metadata
Subject: OpenSAML user discussion
List archive
- From: Kobe Bryant <>
- To:
- Subject: [OpenSAML] NPE whil loading IDP metadata
- Date: Sun, 6 Feb 2011 22:04:33 -0800
- Domainkey-signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:date:message-id:subject:from:to:content-type; b=alk0qY3tafalwW579gaMTWSQpnFW9XnFZFb2W9hGoT7eIDShWwI7vUdEu6e22y/9d1 qKnll+jYoP8ldxnzCoNcFwQ/AEiy2rQYGvIuVa7NYQ7R4HAhPT3yxqbJzTKXNmk+zfD7 KYXcjWpWFQnfQhJ3f/OpjEOhoGfz6CKo38NC4=
I am trying to implement a programmable validation of my SAML2 federation from the service provider.
As a first step I am trying to validate the IDP's metadata using OpenSAML using the loadMetaData() procedure
listed at
http://www.koders.com/java/fid8702140665B6889A85CC1A3311A25C7A0A98C726.aspx?s=base64#L159.
I am unfortunately get a Null Ptr Exception when unmarshalling the metadata very similar to that reported at
http://shibboleth.1660669.n2.nabble.com/Unable-to-unmarshall-metadata-td2863883.html
My IDP mtadata is given below. Could you pl tell me why I get the null ptr exception when unmarshalling?
<?xml version="1.0" encoding="UTF-8" standalone="yes"?>
<EntityDescriptor entityID="dmsIdp" xmlns="urn:oasis:names:tc:SAML:2.0:metadata">
<IDPSSODescriptor WantAuthnRequestsSigned="false" protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol">
<KeyDescriptor use="signing">
<ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
<ds:X509Data>
<ds:X509Certificate> [...elided...]</ds:X509Certificate>
</ds:X509Data>
</ds:KeyInfo>
</KeyDescriptor>
<ArtifactResolutionService index="0" isDefault="true" Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location
="http://myIdp.xxx.com:8080/opensso/ArtifactResolver/metaAlias/idp"/>
<SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="http://myIdp.xxx.com:8080/opensso/IDPSloRedirect/metaAlias/idp" ResponseLocation="http://myIdp.xxx.com:8080/opensso/IDPSloRedirect/metaAlias/idp
"/>
<SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="http://myIdp.xxx.com:8080/
opensso/IDPSloPOST/metaAlias/idp" ResponseLocation="http://myIdp.xxx.com:8080/opensso/IDPSloPOST/metaAlias/idp"/> <SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="http://myIdp.xxx.com:8080/opens
so/IDPSloSoap/metaAlias/idp"/> <ManageNameIDService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="http://myIdp.xxx.com:8080/opensso/IDPMniRedirect/metaAlias/idp" ResponseLocation="http://myIdp.xxx.com:8080/opensso/IDPMniRedirect/metaAlias/idp
"/> <ManageNameIDService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="http://myIdp.xxx.com:8080/
opensso/IDPMniPOST/metaAlias/idp" ResponseLocation="http://myIdp.xxx.com:8080/opensso/IDPMniPOST/metaAlias/idp"/> <ManageNameIDService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="http://myIdp.xxx.com:8080/opensso/IDPMniSoap/metaAlias/idp"/>
<NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:persistent</NameIDFormat> <NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</NameIDFormat>
<NameIDFormat>urn:oasis:names:tc:SAML:1.1:nameid-format:emailAddress</NameIDFormat>
<NameIDFormat>urn:oasis:names:tc:SAML:1.1:nameid-format:unspecified</NameIDFormat>
<NameIDFormat>urn:oasis:names:tc:SAML:1.1:nameid-format:WindowsDomainQualifiedName</NameIDFormat>
<NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:kerberos</NameIDFormat>
<NameIDFormat>urn:oasis:names:tc:SAML:1.1:nameid-format:X509SubjectName</NameIDFormat>
<SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="http://myIdp.xxx.com:8080/opensso/SSORedirect/metaAlias/idp"/>
<SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="http://myIdp.xxx.com:8080/opensso/SSOPOST/metaAlias/idp"/>
<SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="http://myIdp.xxx.com:8080/opensso/SSOSoap/metaAlias/idp"/>
<NameIDMappingService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="http://myIdp.xxx.com:8080/opensso/NIMSoap/metaAlias/idp"/>
<AssertionIDRequestService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="http://myIdp.xxx.com:8080/opensso/AIDReqSoap/IDPRole/metaAlias/idp"/>
<AssertionIDRequestService Binding="urn:oasis:names:tc:SAML:2.0:bindings:URI" Location="http://myIdp.xxx.com:8080/opensso/AIDReqUri/IDPRole/metaAlias/idp"/>
</IDPSSODescriptor>
</EntityDescriptor>
- [OpenSAML] NPE whil loading IDP metadata, Kobe Bryant, 02/07/2011
- Re: [OpenSAML] NPE whil loading IDP metadata, Brent Putman, 02/07/2011
Archive powered by MHonArc 2.6.16.