I3:XR1-Sun OpenSSO-x-WSO2 IdP

From OSIS Open Source Identity Systems
Jump to: navigation, search

{{#vardefine:DtArticleSortKey|}}

XR1-Sun OpenSSO-x-WSO2 IdP

{{#vardefine:page|{{#if:{{#var:page}}|{{#var:page}}|XR1-Sun OpenSSO-x-WSO2 IdP}}}}{{#vardefine:nr|{{#if:{{#var:nr}}|{{#expr:{{#var:nr}}+1}}|1}}}}{{#vardefine:url|{{#replace:{{#var:page}}| |_}}}}{{#if:XR1-Sun OpenSSO-x-WSO2 IdP|{{#if:{{#var:DtArticleSortKey}}||}}}}{{#ifeq:{{#var:header}}|no||

{{#ifeq:no|no||
{{#if:{{#var:refs}}|[[{{#var:page}}|no_ref's]]|[[Special:Call/DT Article show Refs,page={{#var:page}},refs=yes|ref's]]}}}} {{#if:{{#var:DtArticleSortKey}}|({{#var:DtArticleSortKey}})}}    list help  [[Special:Call/DT Article copy,cat=XResult,from={{#var:page}},namespace=I3|copy]]  [[Special:Call/DT Articles list XML,type=XResult,title={{#var:page}},namespace=I3|as XML]]  edit
}}
{{#if:|Cross Solution Result |Cross Solution Result }}   XR1-Sun OpenSSO-x-WSO2 IdP
Identifier   bgcolor={{{color}}}}}|XR1
Date Tested   bgcolor={{{color}}}}}|11 April 2008
Outcome (Must be one of:)
* Works
* Issues
* Failed
* N/A
* Not Tested
 
bgcolor={{{color}}}}}|Failed
Tested By   bgcolor={{{color}}}}}|Metadaddyatsun 21:18, 11 April 2008 (PDT)
Solutions Involved   bgcolor={{{color}}}}}|{{#if: Sun OpenSSO | I3:Sun OpenSSO |   }}
  bgcolor={{{color}}}}}|{{#if: WSO2 IdP | I3:WSO2 IdP |   }}
Other Solutions Involved   bgcolor={{{color}}}}}|Windows CardSpace 3.5
Operating System   bgcolor={{{color}}}}}|Windows XP
Browser   bgcolor={{{color}}}}}|IE 7
Notes   bgcolor={{{color}}}}}|Update by Pat on 11th April:

Decryption error - exception thrown in XMLDAP library: org.bouncycastle.crypto.InvalidCipherTextException: pad block corrupted

       at org.bouncycastle.crypto.paddings.PKCS7Padding.padCount(Unknown Source)
       at org.bouncycastle.crypto.paddings.PaddedBufferedBlockCipher.doFinal(Unknown Source)
       at net.sourceforge.lightcrypto.Crypt.decrypt(Crypt.java:341)
       at net.sourceforge.lightcrypto.Crypt.decrypt(Crypt.java:251)
       at org.xmldap.crypto.CryptoUtils.decryptAESCBC(CryptoUtils.java:188)
       at org.xmldap.rp.DecryptUtil.decryptToken(DecryptUtil.java:107)
       at org.xmldap.rp.DecryptUtil.decryptToken(DecryptUtil.java:75)
       at org.xmldap.rp.Token.<init>(Token.java:87)
       at com.identarian.infocard.opensso.rp.Infocard.getToken(Infocard.java:591)
       at com.identarian.infocard.opensso.rp.Infocard.getClaims(Infocard.java:549)
       at com.identarian.infocard.opensso.rp.Infocard.getClaim(Infocard.java:530)
       at com.identarian.infocard.opensso.rp.Infocard.getPPID(Infocard.java:512)
       at com.identarian.infocard.opensso.rp.Infocard.processInfocard(Infocard.java:312)
       at com.identarian.infocard.opensso.rp.Infocard.process(Infocard.java:240)
       at com.sun.identity.authentication.spi.AMLoginModule.wrapProcess(AMLoginModule.java:814)
       at com.sun.identity.authentication.spi.AMLoginModule.login(AMLoginModule.java:962)
       at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
       at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
       at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
       at java.lang.reflect.Method.invoke(Method.java:585)
       at com.sun.identity.authentication.jaas.LoginContext.invoke(LoginContext.java:200)
       at com.sun.identity.authentication.jaas.LoginContext.login(LoginContext.java:116)
       at com.sun.identity.authentication.service.AMLoginContext.runLogin(AMLoginContext.java:416)
       at com.sun.identity.authentication.server.AuthContextLocal.submitRequirements(AuthContextLocal.java:586)
       at com.sun.identity.authentication.UI.LoginViewBean.processLoginDisplay(LoginViewBean.java:1293)
       at com.sun.identity.authentication.UI.LoginViewBean.processLogin(LoginViewBean.java:742)
       at com.sun.identity.authentication.UI.LoginViewBean.forwardTo(LoginViewBean.java:413)
       at com.iplanet.jato.ApplicationServletBase.dispatchRequest(ApplicationServletBase.java:981)
       at com.iplanet.jato.ApplicationServletBase.processRequest(ApplicationServletBase.java:615)
       at com.iplanet.jato.ApplicationServletBase.doPost(ApplicationServletBase.java:473)
       at javax.servlet.http.HttpServlet.service(HttpServlet.java:738)
       at javax.servlet.http.HttpServlet.service(HttpServlet.java:831)
       at org.apache.catalina.core.ApplicationFilterChain.servletService(ApplicationFilterChain.java:411)
       at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:317)
       at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:198)
       at com.sun.identity.setup.AMSetupFilter.doFilter(AMSetupFilter.java:80)
       at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:230)
       at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:198)
       at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:288)
       at org.apache.catalina.core.StandardContextValve.invokeInternal(StandardContextValve.java:271)
       at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:202)
       at org.apache.catalina.core.StandardPipeline.doInvoke(StandardPipeline.java:632)
       at org.apache.catalina.core.StandardPipeline.doInvoke(StandardPipeline.java:577)
       at com.sun.enterprise.web.WebPipeline.invoke(WebPipeline.java:94)
       at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:206)
       at org.apache.catalina.core.StandardPipeline.doInvoke(StandardPipeline.java:632)
       at org.apache.catalina.core.StandardPipeline.doInvoke(StandardPipeline.java:577)
       at org.apache.catalina.core.StandardPipeline.invoke(StandardPipeline.java:571)
       at org.apache.catalina.core.ContainerBase.invoke(ContainerBase.java:1080)
       at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:150)
       at org.apache.catalina.core.StandardPipeline.doInvoke(StandardPipeline.java:632)
       at org.apache.catalina.core.StandardPipeline.doInvoke(StandardPipeline.java:577)
       at org.apache.catalina.core.StandardPipeline.invoke(StandardPipeline.java:571)
       at org.apache.catalina.core.ContainerBase.invoke(ContainerBase.java:1080)
       at org.apache.coyote.tomcat5.CoyoteAdapter.service(CoyoteAdapter.java:272)
       at com.sun.enterprise.web.connector.grizzly.DefaultProcessorTask.invokeAdapter(DefaultProcessorTask.java:637)
       at com.sun.enterprise.web.connector.grizzly.DefaultProcessorTask.doProcess(DefaultProcessorTask.java:568)
       at com.sun.enterprise.web.connector.grizzly.DefaultProcessorTask.process(DefaultProcessorTask.java:813)
       at com.sun.enterprise.web.connector.grizzly.DefaultReadTask.executeProcessorTask(DefaultReadTask.java:341)
       at com.sun.enterprise.web.connector.grizzly.ssl.SSLReadTask.process(SSLReadTask.java:440)
       at com.sun.enterprise.web.connector.grizzly.ssl.SSLReadTask.doTask(SSLReadTask.java:228)
       at com.sun.enterprise.web.connector.grizzly.TaskBase.run(TaskBase.java:265)
       at com.sun.enterprise.web.connector.grizzly.ssl.SSLWorkerThread.run(SSLWorkerThread.java:106)


Update by Prabath/WSO2 on 12th April:

You first need to upload your RP certificate to the WSO2 IdP, using the account you created there. Once your certificate is correctly uploaded, you can preview from CardSpace. But it results in "Authentication Failed" message - on the RP, once logged in.


Identity Selector retrieves data correctly - but once logged in resulted with the message:

 Authentication failed.

Added by Pat Patterson: I was unable to retrieve a token from the STS, even when just previewing the card in CardSpace. Got the following error: Log Name: Application Source: CardSpace 3.0.0.0 Date: 4/10/2008 9:20:13 PM Event ID: 273 Task Category: ServiceAuthorization Level: Error Keywords: Classic User: vista\pat Computer: vista Description: There was a failure making a WS-Trust exchange with an external application. Could not retrieve token from identity provider.

Inner Exception: The content type text/html;charset=utf-8 of the response message does not match the content type of the binding (text/xml; charset=utf-8). If using a custom encoder, be sure that the IsContentTypeSupported method is implemented properly. The first 1000 bytes of the response were: 'Apache Tomcat/5.5.15 - Error report

HTTP Status 500 -


type Status report

message

description The server encountered an internal error () that prevented it from fulfilling this request.


Apache Tomcat/5.5.15

'. Inner Exception: The remote server returned an error: (500) Internal Server Error.


Additional Information: Microsoft.InfoCards.TrustExchangeException: Could not retrieve token from identity provider. ---> System.ServiceModel.ProtocolException: The content type text/html;charset=utf-8 of the response message does not match the content type of the binding (text/xml; charset=utf-8). If using a custom encoder, be sure that the IsContentTypeSupported method is implemented properly. The first 1000 bytes of the response were: 'Apache Tomcat/5.5.15 - Error report

HTTP Status 500 -


type Status report

message

description The server encountered an internal error () that prevented it from fulfilling this request.


Apache Tomcat/5.5.15

'. ---> System.Net.WebException: The remote server returned an error: (500) Internal Server Error.

  at System.Net.HttpWebRequest.GetResponse()
  at System.ServiceModel.Channels.HttpChannelFactory.HttpRequestChannel.HttpChannelRequest.WaitForReply(TimeSpan timeout)
  --- End of inner exception stack trace ---

Server stack trace:

  at System.ServiceModel.Channels.HttpChannelUtilities.ValidateRequestReplyResponse(HttpWebRequest request, HttpWebResponse response, HttpChannelFactory factory, WebException responseException)
  at System.ServiceModel.Channels.HttpChannelFactory.HttpRequestChannel.HttpChannelRequest.WaitForReply(TimeSpan timeout)
  at System.ServiceModel.Channels.RequestChannel.Request(Message message, TimeSpan timeout)
  at System.ServiceModel.Channels.SecurityChannelFactory`1.SecurityRequestChannel.Request(Message message, TimeSpan timeout)
  at System.ServiceModel.Dispatcher.RequestChannelBinder.Request(Message message, TimeSpan timeout)
  at System.ServiceModel.Channels.ServiceChannel.Call(String action, Boolean oneway, ProxyOperationRuntime operation, Object[] ins, Object[] outs, TimeSpan timeout)
  at System.ServiceModel.Channels.ServiceChannel.Call(String action, Boolean oneway, ProxyOperationRuntime operation, Object[] ins, Object[] outs)
  at System.ServiceModel.Channels.ServiceChannelProxy.InvokeService(IMethodCallMessage methodCall, ProxyOperationRuntime operation)
  at System.ServiceModel.Channels.ServiceChannelProxy.Invoke(IMessage message)

Exception rethrown at [0]:

  at System.Runtime.Remoting.Proxies.RealProxy.HandleReturnMessage(IMessage reqMsg, IMessage retMsg)
  at System.Runtime.Remoting.Proxies.RealProxy.PrivateInvoke(MessageData& msgData, Int32 type)
  at Microsoft.InfoCards.RemoteTokenFactory.ISts.ProcessRequestSecurityTokenFeb2005(Message rstMessage)
  at Microsoft.InfoCards.RemoteTokenFactory.ProduceToken(InfoCard card, TokenCreationParameter parameter, TokenFactoryCredential credential, InfoCardPolicy policy, Boolean discloseOptional)
  --- End of inner exception stack trace ---

Event Xml: <Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">

 <System>
   <Provider Name="CardSpace 3.0.0.0" />
   <EventID Qualifiers="49157">273</EventID>
   <Level>2</Level>
   <Task>1</Task>
   <Keywords>0x80000000000000</Keywords>
   <TimeCreated SystemTime="2008-04-11T04:20:13.000Z" />
   <EventRecordID>685</EventRecordID>
   <Channel>Application</Channel>
   <Computer>vista</Computer>
   <Security UserID="S-1-5-21-1990234878-1089531229-2133382370-1000" />
 </System>
 <EventData>
   Could not retrieve token from identity provider.

Inner Exception: The content type text/html;charset=utf-8 of the response message does not match the content type of the binding (text/xml; charset=utf-8). If using a custom encoder, be sure that the IsContentTypeSupported method is implemented properly. The first 1000 bytes of the response were: '<html><head><title>Apache Tomcat/5.5.15 - Error report</title><style><!--H1 {font-family:Tahoma,Arial,sans-serif;color:white;background-color:#525D76;font-size:22px;} H2 {font-family:Tahoma,Arial,sans-serif;color:white;background-color:#525D76;font-size:16px;} H3 {font-family:Tahoma,Arial,sans-serif;color:white;background-color:#525D76;font-size:14px;} BODY {font-family:Tahoma,Arial,sans-serif;color:black;background-color:white;} B {font-family:Tahoma,Arial,sans-serif;color:white;background-color:#525D76;} P {font-family:Tahoma,Arial,sans-serif;background:white;color:black;font-size:12px;}A {color : black;}A.name {color : black;}HR {color : #525D76;}--></style> </head><body><h1>HTTP Status 500 - </h1><HR size="1" noshade="noshade"><p><b>type</b> Status report</p><p><b>message</b> <u></u></p><p><b>description</b> <u>The server encountered an internal error () that prevented it from fulfilling this request.</u></p><HR size="1" noshade="noshade"><h3>Apache Tomcat/5.5.15</h3></body></html>'. Inner Exception: The remote server returned an error: (500) Internal Server Error.


Additional Information: Microsoft.InfoCards.TrustExchangeException: Could not retrieve token from identity provider. ---> System.ServiceModel.ProtocolException: The content type text/html;charset=utf-8 of the response message does not match the content type of the binding (text/xml; charset=utf-8). If using a custom encoder, be sure that the IsContentTypeSupported method is implemented properly. The first 1000 bytes of the response were: '<html><head><title>Apache Tomcat/5.5.15 - Error report</title><style><!--H1 {font-family:Tahoma,Arial,sans-serif;color:white;background-color:#525D76;font-size:22px;} H2 {font-family:Tahoma,Arial,sans-serif;color:white;background-color:#525D76;font-size:16px;} H3 {font-family:Tahoma,Arial,sans-serif;color:white;background-color:#525D76;font-size:14px;} BODY {font-family:Tahoma,Arial,sans-serif;color:black;background-color:white;} B {font-family:Tahoma,Arial,sans-serif;color:white;background-color:#525D76;} P {font-family:Tahoma,Arial,sans-serif;background:white;color:black;font-size:12px;}A {color : black;}A.name {color : black;}HR {color : #525D76;}--></style> </head><body><h1>HTTP Status 500 - </h1><HR size="1" noshade="noshade"><p><b>type</b> Status report</p><p><b>message</b> <u></u></p><p><b>description</b> <u>The server encountered an internal error () that prevented it from fulfilling this request.</u></p><HR size="1" noshade="noshade"><h3>Apache Tomcat/5.5.15</h3></body></html>'. ---> System.Net.WebException: The remote server returned an error: (500) Internal Server Error.

  at System.Net.HttpWebRequest.GetResponse()
  at System.ServiceModel.Channels.HttpChannelFactory.HttpRequestChannel.HttpChannelRequest.WaitForReply(TimeSpan timeout)
  --- End of inner exception stack trace ---

Server stack trace:

  at System.ServiceModel.Channels.HttpChannelUtilities.ValidateRequestReplyResponse(HttpWebRequest request, HttpWebResponse response, HttpChannelFactory factory, WebException responseException)
  at System.ServiceModel.Channels.HttpChannelFactory.HttpRequestChannel.HttpChannelRequest.WaitForReply(TimeSpan timeout)
  at System.ServiceModel.Channels.RequestChannel.Request(Message message, TimeSpan timeout)
  at System.ServiceModel.Channels.SecurityChannelFactory`1.SecurityRequestChannel.Request(Message message, TimeSpan timeout)
  at System.ServiceModel.Dispatcher.RequestChannelBinder.Request(Message message, TimeSpan timeout)
  at System.ServiceModel.Channels.ServiceChannel.Call(String action, Boolean oneway, ProxyOperationRuntime operation, Object[] ins, Object[] outs, TimeSpan timeout)
  at System.ServiceModel.Channels.ServiceChannel.Call(String action, Boolean oneway, ProxyOperationRuntime operation, Object[] ins, Object[] outs)
  at System.ServiceModel.Channels.ServiceChannelProxy.InvokeService(IMethodCallMessage methodCall, ProxyOperationRuntime operation)
  at System.ServiceModel.Channels.ServiceChannelProxy.Invoke(IMessage message)

Exception rethrown at [0]:

  at System.Runtime.Remoting.Proxies.RealProxy.HandleReturnMessage(IMessage reqMsg, IMessage retMsg)
  at System.Runtime.Remoting.Proxies.RealProxy.PrivateInvoke(MessageData& msgData, Int32 type)
  at Microsoft.InfoCards.RemoteTokenFactory.ISts.ProcessRequestSecurityTokenFeb2005(Message rstMessage)
  at Microsoft.InfoCards.RemoteTokenFactory.ProduceToken(InfoCard card, TokenCreationParameter parameter, TokenFactoryCredential credential, InfoCardPolicy policy, Boolean discloseOptional)
  --- End of inner exception stack trace ---
 </EventData>

</Event>

Click here for help populating this chart.

Back To

{{#dpl: namespace = I3 | linksto = I3:XR1-Sun OpenSSO-x-WSO2 IdP }}