shibboleth-dev - SimpleSAMLPHP 1.6.0 and Shibboleth SAML 1.1 interoperability
Subject: Shibboleth Developers
List archive
- From: Emmanuel Dreyfus <>
- To:
- Subject: SimpleSAMLPHP 1.6.0 and Shibboleth SAML 1.1 interoperability
- Date: Tue, 15 Jun 2010 13:48:14 +0000
Hello
I have trouble interoperating simplesamlPHP and Shibboleth SAML 1.1
(it works fine with SAML 2.0). Below is the message I sent to the
simpleSAMLphp mailing list, without any success:
Anyone has some hints about where to look at now?
Emmanuel Dreyfus
<>
wrote:
> Hello
>
> I have trouble to interoperate simplesamlphp-1.6.0 IdP with a Shibboleth
> 2.3 SP.
>
> Using saml2, it works fine
> Using shib13 it fails with
> > opensaml::SecurityPolicyException
> > Security of SAML 1.x SSO POST response not established.
>
> There is nothing in the logs on theSP, even at debug level. The last
> message is:
> > Shibboleth.SSO.SAML1 [45]:
> > processing message against SAML 1.x SSO profile
>
> I had a look at Shibboleth sources, and I suspect it can be something
> that went wrong with the signature. The assertion contains a signature,
> though, and it seems Shibboleth has seen it:
> > XMLTooling.XMLObject.Builder [45]:
> > located XMLObjectBuilder for element name: ds:Signature
> > XMLTooling.XMLObject [45]: unmarshalling child element (ds:Signature)
> > XMLTooling.XMLObject.Signature [45]: unmarshalling ds:Signature
>
> Any idea, anyone? Of course, the SP works fine against a Shibboleth IdP
--
Emmanuel Dreyfus
http://hcpnet.free.fr/pubz
----- End forwarded message -----
--
Emmanuel Dreyfus
- SimpleSAMLPHP 1.6.0 and Shibboleth SAML 1.1 interoperability, Emmanuel Dreyfus, 06/15/2010
- RE: [Shib-Dev] SimpleSAMLPHP 1.6.0 and Shibboleth SAML 1.1 interoperability, Scott Cantor, 06/15/2010
- Re: [Shib-Dev] SimpleSAMLPHP 1.6.0 and Shibboleth SAML 1.1 interoperability, Emmanuel Dreyfus, 06/16/2010
Archive powered by MHonArc 2.6.16.