SAML Plugin class cast Exception

Fórum

Alex Billett, modificado 11 Anos atrás.

SAML Plugin class cast Exception

New Member Mensagem: 1 Data de Entrada: 16/01/13 Postagens Recentes

I am working on getting Liferay set up as an SP using PingIdentity as the idp and whenever i attempt a SAML login. I am at a total loss for why this is happening and have changed every setting i can think of but am still getting it. Any help would be appreciated. I will include the full stacktrace, the saml response, relevent portal-ext.properties, and my idp meta data below.

Stack trace :

17:42:58,574 INFO  [stdout] (http--10.16.192.225-8080-1) 17:42:58,571 ERROR [http--10.16.192.225-8080-1][status_jsp:635] com.liferay.saml.SamlException: java.lang.ClassCastException: org.apache.xml.security.transforms.implementations.TransformEnvelopedSignature cannot be cast to org.apache.xml.security.transforms.TransformSpi
17:42:58,575 INFO  [stdout] (http--10.16.192.225-8080-1) com.liferay.saml.SamlException: java.lang.ClassCastException: org.apache.xml.security.transforms.implementations.TransformEnvelopedSignature cannot be cast to org.apache.xml.security.transforms.TransformSpi
17:42:58,576 INFO  [stdout] (http--10.16.192.225-8080-1) 	at com.liferay.saml.profile.WebSsoProfileImpl.processResponse(WebSsoProfileImpl.java:149)
17:42:58,576 INFO  [stdout] (http--10.16.192.225-8080-1) 	at com.liferay.saml.profile.WebSsoProfileUtil.processResponse(WebSsoProfileUtil.java:43)
17:42:58,576 INFO  [stdout] (http--10.16.192.225-8080-1) 	at com.liferay.saml.hook.action.AssertionConsumerServiceAction.execute(AssertionConsumerServiceAction.java:40)
17:42:58,577 INFO  [stdout] (http--10.16.192.225-8080-1) 	at com.liferay.portal.kernel.struts.BaseStrutsAction.execute(BaseStrutsAction.java:37)
17:42:58,577 INFO  [stdout] (http--10.16.192.225-8080-1) 	at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
17:42:58,578 INFO  [stdout] (http--10.16.192.225-8080-1) 	at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
17:42:58,578 INFO  [stdout] (http--10.16.192.225-8080-1) 	at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
17:42:58,578 INFO  [stdout] (http--10.16.192.225-8080-1) 	at java.lang.reflect.Method.invoke(Method.java:597)
17:42:58,579 INFO  [stdout] (http--10.16.192.225-8080-1) 	at com.liferay.portal.kernel.bean.ClassLoaderBeanHandler.invoke(ClassLoaderBeanHandler.java:67)
17:42:58,579 INFO  [stdout] (http--10.16.192.225-8080-1) 	at $Proxy313.execute(Unknown Source)
17:42:58,580 INFO  [stdout] (http--10.16.192.225-8080-1) 	at com.liferay.portal.struts.ActionAdapter.execute(ActionAdapter.java:50)
17:42:58,580 INFO  [stdout] (http--10.16.192.225-8080-1) 	at org.apache.struts.action.RequestProcessor.processActionPerform(RequestProcessor.java:431)
17:42:58,580 INFO  [stdout] (http--10.16.192.225-8080-1) 	at org.apache.struts.action.RequestProcessor.process(RequestProcessor.java:236)
17:42:58,581 INFO  [stdout] (http--10.16.192.225-8080-1) 	at com.liferay.portal.struts.PortalRequestProcessor.process(PortalRequestProcessor.java:176)
17:42:58,581 INFO  [stdout] (http--10.16.192.225-8080-1) 	at org.apache.struts.action.ActionServlet.process(ActionServlet.java:1196)
17:42:58,582 INFO  [stdout] (http--10.16.192.225-8080-1) 	at org.apache.struts.action.ActionServlet.doPost(ActionServlet.java:432)
17:42:58,582 INFO  [stdout] (http--10.16.192.225-8080-1) 	at javax.servlet.http.HttpServlet.service(HttpServlet.java:754)
17:42:58,582 INFO  [stdout] (http--10.16.192.225-8080-1) 	at com.liferay.portal.servlet.MainServlet.callParentService(MainServlet.java:560)
17:42:58,583 INFO  [stdout] (http--10.16.192.225-8080-1) 	at com.liferay.portal.servlet.MainServlet.service(MainServlet.java:537)
17:42:58,583 INFO  [stdout] (http--10.16.192.225-8080-1) 	at javax.servlet.http.HttpServlet.service(HttpServlet.java:847)
17:42:58,583 INFO  [stdout] (http--10.16.192.225-8080-1) 	at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:329)
17:42:58,584 INFO  [stdout] (http--10.16.192.225-8080-1) 	at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:248)
17:42:58,584 INFO  [stdout] (http--10.16.192.225-8080-1) 	at com.liferay.portal.kernel.servlet.filters.invoker.InvokerFilterChain.doFilter(InvokerFilterChain.java:72)
17:42:58,585 INFO  [stdout] (http--10.16.192.225-8080-1) 	at com.liferay.portal.kernel.servlet.filters.invoker.InvokerFilterChain.doFilter(InvokerFilterChain.java:116)
17:42:58,585 INFO  [stdout] (http--10.16.192.225-8080-1) 	at com.liferay.portal.kernel.servlet.filters.invoker.InvokerFilterChain.doFilter(InvokerFilterChain.java:116)
17:42:58,586 INFO  [stdout] (http--10.16.192.225-8080-1) 	at com.liferay.portal.kernel.servlet.BaseFilter.processFilter(BaseFilter.java:163)
17:42:58,586 INFO  [stdout] (http--10.16.192.225-8080-1) 	at com.liferay.portal.servlet.filters.strip.StripFilter.processFilter(StripFilter.java:335)
17:42:58,587 INFO  [stdout] (http--10.16.192.225-8080-1) 	at com.liferay.portal.kernel.servlet.BaseFilter.doFilter(BaseFilter.java:57)
17:42:58,587 INFO  [stdout] (http--10.16.192.225-8080-1) 	at com.liferay.portal.kernel.servlet.filters.invoker.InvokerFilterChain.processDoFilter(InvokerFilterChain.java:206)
17:42:58,587 INFO  [stdout] (http--10.16.192.225-8080-1) 	at com.liferay.portal.kernel.servlet.filters.invoker.InvokerFilterChain.doFilter(InvokerFilterChain.java:108)
17:42:58,588 INFO  [stdout] (http--10.16.192.225-8080-1) 	at com.liferay.portal.kernel.servlet.filters.invoker.InvokerFilterChain.doFilter(InvokerFilterChain.java:116)
17:42:58,588 INFO  [stdout] (http--10.16.192.225-8080-1) 	at com.liferay.portal.kernel.servlet.BaseFilter.processFilter(BaseFilter.java:163)
17:42:58,589 INFO  [stdout] (http--10.16.192.225-8080-1) 	at com.liferay.portal.servlet.filters.gzip.GZipFilter.processFilter(GZipFilter.java:123)
17:42:58,589 INFO  [stdout] (http--10.16.192.225-8080-1) 	at com.liferay.portal.kernel.servlet.BaseFilter.doFilter(BaseFilter.java:57)
17:42:58,589 INFO  [stdout] (http--10.16.192.225-8080-1) 	at com.liferay.portal.kernel.servlet.filters.invoker.InvokerFilterChain.processDoFilter(InvokerFilterChain.java:206)
17:42:58,590 INFO  [stdout] (http--10.16.192.225-8080-1) 	at com.liferay.portal.kernel.servlet.filters.invoker.InvokerFilterChain.doFilter(InvokerFilterChain.java:108)
17:42:58,590 INFO  [stdout] (http--10.16.192.225-8080-1) 	at com.liferay.portal.kernel.servlet.BaseFilter.processFilter(BaseFilter.java:163)
17:42:58,591 INFO  [stdout] (http--10.16.192.225-8080-1) 	at com.liferay.portal.servlet.filters.secure.SecureFilter.processFilter(SecureFilter.java:294)
17:42:58,591 INFO  [stdout] (http--10.16.192.225-8080-1) 	at com.liferay.portal.kernel.servlet.BaseFilter.doFilter(BaseFilter.java:57)
17:42:58,592 INFO  [stdout] (http--10.16.192.225-8080-1) 	at com.liferay.portal.kernel.servlet.filters.invoker.InvokerFilterChain.processDoFilter(InvokerFilterChain.java:206)
17:42:58,592 INFO  [stdout] (http--10.16.192.225-8080-1) 	at com.liferay.portal.kernel.servlet.filters.invoker.InvokerFilterChain.doFilter(InvokerFilterChain.java:108)
17:42:58,593 INFO  [stdout] (http--10.16.192.225-8080-1) 	at com.liferay.portal.kernel.servlet.BaseFilter.processFilter(BaseFilter.java:163)
17:42:58,593 INFO  [stdout] (http--10.16.192.225-8080-1) 	at com.liferay.portal.servlet.filters.sso.ntlm.NtlmPostFilter.processFilter(NtlmPostFilter.java:83)
17:42:58,593 INFO  [stdout] (http--10.16.192.225-8080-1) 	at com.liferay.portal.kernel.servlet.BaseFilter.doFilter(BaseFilter.java:57)
17:42:58,594 INFO  [stdout] (http--10.16.192.225-8080-1) 	at com.liferay.portal.kernel.servlet.filters.invoker.InvokerFilterChain.processDoFilter(InvokerFilterChain.java:206)
17:42:58,594 INFO  [stdout] (http--10.16.192.225-8080-1) 	at com.liferay.portal.kernel.servlet.filters.invoker.InvokerFilterChain.doFilter(InvokerFilterChain.java:108)
17:42:58,595 INFO  [stdout] (http--10.16.192.225-8080-1) 	at com.liferay.saml.hook.filter.SamlSpSsoFilter.processFilter(SamlSpSsoFilter.java:168)
17:42:58,595 INFO  [stdout] (http--10.16.192.225-8080-1) 	at com.liferay.portal.kernel.servlet.BaseFilter.doFilter(BaseFilter.java:57)
17:42:58,596 INFO  [stdout] (http--10.16.192.225-8080-1) 	at sun.reflect.GeneratedMethodAccessor226.invoke(Unknown Source)
17:42:58,596 INFO  [stdout] (http--10.16.192.225-8080-1) 	at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
17:42:58,596 INFO  [stdout] (http--10.16.192.225-8080-1) 	at java.lang.reflect.Method.invoke(Method.java:597)
17:42:58,597 INFO  [stdout] (http--10.16.192.225-8080-1) 	at com.liferay.portal.kernel.bean.ClassLoaderBeanHandler.invoke(ClassLoaderBeanHandler.java:67)
17:42:58,597 INFO  [stdout] (http--10.16.192.225-8080-1) 	at $Proxy312.doFilter(Unknown Source)
17:42:58,597 INFO  [stdout] (http--10.16.192.225-8080-1) 	at com.liferay.portal.kernel.servlet.filters.invoker.InvokerFilterChain.processDoFilter(InvokerFilterChain.java:206)
17:42:58,598 INFO  [stdout] (http--10.16.192.225-8080-1) 	at com.liferay.portal.kernel.servlet.filters.invoker.InvokerFilterChain.doFilter(InvokerFilterChain.java:108)
17:42:58,598 INFO  [stdout] (http--10.16.192.225-8080-1) 	at com.liferay.portal.kernel.servlet.BaseFilter.processFilter(BaseFilter.java:163)
17:42:58,599 INFO  [stdout] (http--10.16.192.225-8080-1) 	at com.liferay.portal.sharepoint.SharepointFilter.processFilter(SharepointFilter.java:80)
17:42:58,599 INFO  [stdout] (http--10.16.192.225-8080-1) 	at com.liferay.portal.kernel.servlet.BaseFilter.doFilter(BaseFilter.java:57)
17:42:58,600 INFO  [stdout] (http--10.16.192.225-8080-1) 	at com.liferay.portal.kernel.servlet.filters.invoker.InvokerFilterChain.processDoFilter(InvokerFilterChain.java:206)
17:42:58,600 INFO  [stdout] (http--10.16.192.225-8080-1) 	at com.liferay.portal.kernel.servlet.filters.invoker.InvokerFilterChain.doFilter(InvokerFilterChain.java:108)
17:42:58,601 INFO  [stdout] (http--10.16.192.225-8080-1) 	at com.liferay.portal.kernel.servlet.BaseFilter.processFilter(BaseFilter.java:163)
17:42:58,601 INFO  [stdout] (http--10.16.192.225-8080-1) 	at com.liferay.portal.servlet.filters.virtualhost.VirtualHostFilter.processFilter(VirtualHostFilter.java:216)
17:42:58,601 INFO  [stdout] (http--10.16.192.225-8080-1) 	at com.liferay.portal.kernel.servlet.BaseFilter.doFilter(BaseFilter.java:57)
17:42:58,602 INFO  [stdout] (http--10.16.192.225-8080-1) 	at com.liferay.portal.kernel.servlet.filters.invoker.InvokerFilterChain.processDoFilter(InvokerFilterChain.java:206)
17:42:58,602 INFO  [stdout] (http--10.16.192.225-8080-1) 	at com.liferay.portal.kernel.servlet.filters.invoker.InvokerFilterChain.doFilter(InvokerFilterChain.java:108)
17:42:58,603 INFO  [stdout] (http--10.16.192.225-8080-1) 	at com.liferay.portal.kernel.servlet.filters.invoker.InvokerFilterChain.processDirectCallFilter(InvokerFilterChain.java:187)
17:42:58,603 INFO  [stdout] (http--10.16.192.225-8080-1) 	at com.liferay.portal.kernel.servlet.filters.invoker.InvokerFilterChain.doFilter(InvokerFilterChain.java:95)
17:42:58,604 INFO  [stdout] (http--10.16.192.225-8080-1) 	at com.liferay.portal.kernel.servlet.filters.invoker.InvokerFilterChain.doFilter(InvokerFilterChain.java:116)
17:42:58,604 INFO  [stdout] (http--10.16.192.225-8080-1) 	at com.liferay.portal.kernel.servlet.filters.invoker.InvokerFilterChain.doFilter(InvokerFilterChain.java:116)
17:42:58,605 INFO  [stdout] (http--10.16.192.225-8080-1) 	at com.liferay.portal.kernel.servlet.filters.invoker.InvokerFilterChain.doFilter(InvokerFilterChain.java:116)
17:42:58,605 INFO  [stdout] (http--10.16.192.225-8080-1) 	at com.liferay.portal.kernel.servlet.filters.invoker.InvokerFilterChain.doFilter(InvokerFilterChain.java:116)
17:42:58,606 INFO  [stdout] (http--10.16.192.225-8080-1) 	at org.tuckey.web.filters.urlrewrite.UrlRewriteFilter.doFilter(UrlRewriteFilter.java:738)
17:42:58,606 INFO  [stdout] (http--10.16.192.225-8080-1) 	at com.liferay.portal.kernel.servlet.filters.invoker.InvokerFilterChain.processDoFilter(InvokerFilterChain.java:206)
17:42:58,607 INFO  [stdout] (http--10.16.192.225-8080-1) 	at com.liferay.portal.kernel.servlet.filters.invoker.InvokerFilterChain.doFilter(InvokerFilterChain.java:108)
17:42:58,607 INFO  [stdout] (http--10.16.192.225-8080-1) 	at com.liferay.portal.kernel.servlet.filters.invoker.InvokerFilterChain.processDirectCallFilter(InvokerFilterChain.java:167)
17:42:58,608 INFO  [stdout] (http--10.16.192.225-8080-1) 	at com.liferay.portal.kernel.servlet.filters.invoker.InvokerFilterChain.doFilter(InvokerFilterChain.java:95)
17:42:58,608 INFO  [stdout] (http--10.16.192.225-8080-1) 	at com.liferay.portal.kernel.servlet.filters.invoker.InvokerFilterChain.doFilter(InvokerFilterChain.java:116)
17:42:58,609 INFO  [stdout] (http--10.16.192.225-8080-1) 	at com.liferay.portal.kernel.servlet.filters.invoker.InvokerFilterChain.processDirectCallFilter(InvokerFilterChain.java:167)
17:42:58,609 INFO  [stdout] (http--10.16.192.225-8080-1) 	at com.liferay.portal.kernel.servlet.filters.invoker.InvokerFilterChain.doFilter(InvokerFilterChain.java:95)
17:42:58,610 INFO  [stdout] (http--10.16.192.225-8080-1) 	at com.liferay.portal.kernel.servlet.filters.invoker.InvokerFilterChain.doFilter(InvokerFilterChain.java:116)
17:42:58,610 INFO  [stdout] (http--10.16.192.225-8080-1) 	at com.liferay.portal.kernel.servlet.filters.invoker.InvokerFilterChain.processDirectCallFilter(InvokerFilterChain.java:187)
17:42:58,611 INFO  [stdout] (http--10.16.192.225-8080-1) 	at com.liferay.portal.kernel.servlet.filters.invoker.InvokerFilterChain.doFilter(InvokerFilterChain.java:95)
17:42:58,611 INFO  [stdout] (http--10.16.192.225-8080-1) 	at com.liferay.portal.kernel.servlet.filters.invoker.InvokerFilter.doFilter(InvokerFilter.java:73)
17:42:58,612 INFO  [stdout] (http--10.16.192.225-8080-1) 	at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:280)
17:42:58,612 INFO  [stdout] (http--10.16.192.225-8080-1) 	at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:248)
17:42:58,612 INFO  [stdout] (http--10.16.192.225-8080-1) 	at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:275)
17:42:58,613 INFO  [stdout] (http--10.16.192.225-8080-1) 	at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:161)
17:42:58,613 INFO  [stdout] (http--10.16.192.225-8080-1) 	at org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:397)
17:42:58,614 INFO  [stdout] (http--10.16.192.225-8080-1) 	at org.jboss.as.jpa.interceptor.WebNonTxEmCloserValve.invoke(WebNonTxEmCloserValve.java:50)
17:42:58,614 INFO  [stdout] (http--10.16.192.225-8080-1) 	at org.jboss.as.web.security.SecurityContextAssociationValve.invoke(SecurityContextAssociationValve.java:153)
17:42:58,615 INFO  [stdout] (http--10.16.192.225-8080-1) 	at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:155)
17:42:58,615 INFO  [stdout] (http--10.16.192.225-8080-1) 	at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:102)
17:42:58,615 INFO  [stdout] (http--10.16.192.225-8080-1) 	at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:109)
17:42:58,616 INFO  [stdout] (http--10.16.192.225-8080-1) 	at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:368)
17:42:58,616 INFO  [stdout] (http--10.16.192.225-8080-1) 	at org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:877)
17:42:58,617 INFO  [stdout] (http--10.16.192.225-8080-1) 	at org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.process(Http11Protocol.java:671)
17:42:58,617 INFO  [stdout] (http--10.16.192.225-8080-1) 	at org.apache.tomcat.util.net.JIoEndpoint$Worker.run(JIoEndpoint.java:930)
17:42:58,617 INFO  [stdout] (http--10.16.192.225-8080-1) 	at java.lang.Thread.run(Thread.java:619)
17:42:58,618 INFO  [stdout] (http--10.16.192.225-8080-1) Caused by: java.lang.ClassCastException: org.apache.xml.security.transforms.implementations.TransformEnvelopedSignature cannot be cast to org.apache.xml.security.transforms.TransformSpi
17:42:58,618 INFO  [stdout] (http--10.16.192.225-8080-1) 	at org.apache.xml.security.transforms.Transform.getTransformSpi(Unknown Source)
17:42:58,619 INFO  [stdout] (http--10.16.192.225-8080-1) 	at org.apache.xml.security.transforms.Transform.<init>(Unknown Source)
17:42:58,619 INFO  [stdout] (http--10.16.192.225-8080-1) 	at org.apache.xml.security.transforms.Transforms.item(Unknown Source)
17:42:58,620 INFO  [stdout] (http--10.16.192.225-8080-1) 	at org.opensaml.security.SAMLSignatureProfileValidator.validateTransforms(SAMLSignatureProfileValidator.java:222)
17:42:58,620 INFO  [stdout] (http--10.16.192.225-8080-1) 	at org.opensaml.security.SAMLSignatureProfileValidator.validateSignatureImpl(SAMLSignatureProfileValidator.java:86)
17:42:58,621 INFO  [stdout] (http--10.16.192.225-8080-1) 	at org.opensaml.security.SAMLSignatureProfileValidator.validate(SAMLSignatureProfileValidator.java:56)
17:42:58,621 INFO  [stdout] (http--10.16.192.225-8080-1) 	at org.opensaml.security.SAMLSignatureProfileValidator.validate(SAMLSignatureProfileValidator.java:42)
17:42:58,621 INFO  [stdout] (http--10.16.192.225-8080-1) 	at org.opensaml.common.binding.security.SAMLProtocolMessageXMLSignatureSecurityPolicyRule.performPreValidation(SAMLProtocolMessageXMLSignatureSecurityPolicyRule.java:164)
17:42:58,622 INFO  [stdout] (http--10.16.192.225-8080-1) 	at org.opensaml.common.binding.security.SAMLProtocolMessageXMLSignatureSecurityPolicyRule.evaluate(SAMLProtocolMessageXMLSignatureSecurityPolicyRule.java:105)
17:42:58,623 INFO  [stdout] (http--10.16.192.225-8080-1) 	at org.opensaml.ws.security.provider.BasicSecurityPolicy.evaluate(BasicSecurityPolicy.java:51)
17:42:58,623 INFO  [stdout] (http--10.16.192.225-8080-1) 	at org.opensaml.ws.message.decoder.BaseMessageDecoder.processSecurityPolicy(BaseMessageDecoder.java:132)
17:42:58,624 INFO  [stdout] (http--10.16.192.225-8080-1) 	at org.opensaml.ws.message.decoder.BaseMessageDecoder.decode(BaseMessageDecoder.java:83)
17:42:58,624 INFO  [stdout] (http--10.16.192.225-8080-1) 	at org.opensaml.saml2.binding.decoding.BaseSAML2MessageDecoder.decode(BaseSAML2MessageDecoder.java:70)
17:42:58,625 INFO  [stdout] (http--10.16.192.225-8080-1) 	at com.liferay.saml.profile.BaseProfile.decodeSamlMessage(BaseProfile.java:73)
17:42:58,625 INFO  [stdout] (http--10.16.192.225-8080-1) 	at com.liferay.saml.profile.WebSsoProfileImpl.doProcessResponse(WebSsoProfileImpl.java:385)
17:42:58,625 INFO  [stdout] (http--10.16.192.225-8080-1) 	at com.liferay.saml.profile.WebSsoProfileImpl.processResponse(WebSsoProfileImpl.java:139)
17:42:58,626 INFO  [stdout] (http--10.16.192.225-8080-1) 	... 97 more
</init>

SAML:

<response destination="http://10.16.192.225:8080/c/portal/saml/acs" issueinstant="2013-01-17T17:31:52.471Z" id="HZdOvgdnlF4.DVn.4kWIZ7wpwKk" version="2.0" xmlns="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <saml:issuer>GNWIntranetDev</saml:issuer>
  <ds:signature>
    <ds:signedinfo>
      <ds:canonicalizationmethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#" />
      <ds:signaturemethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1" />
      <ds:reference uri="#HZdOvgdnlF4.DVn.4kWIZ7wpwKk">
        <ds:transforms>
          <ds:transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature" />
          <ds:transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#" />
        </ds:transforms>
        <ds:digestmethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1" />
        <ds:digestvalue>hLe/0VUE2QQ0u1n6z+3ICByWnko=</ds:digestvalue>
      </ds:reference>
    </ds:signedinfo>
    <ds:signaturevalue>KIkQpGQLGnEERQE6v.....</ds:signaturevalue>
  </ds:signature>
  <status>
    <statuscode Value="urn:oasis:names:tc:SAML:2.0:status:Success" />
  </status>
  <saml:assertion version="2.0" issueinstant="2013-01-17T17:31:52.475Z" id="K.m1SisKJoHrf9G2DEbkZUA.dd1">
    <saml:issuer>myEntityID</saml:issuer>
    <saml:subject>
      <saml:nameid format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">326001670</saml:nameid>
      <saml:subjectconfirmation method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:subjectconfirmationdata NotOnOrAfter="2013-01-17T17:36:52.475Z" Recipient="http://10.16.192.225:8080/c/portal/saml/acs" />
      </saml:subjectconfirmation>
    </saml:subject>
    <saml:conditions notonorafter="2013-01-17T17:36:52.475Z" notbefore="2013-01-17T17:26:52.475Z">
      <saml:audiencerestriction>
        <saml:audience>IntranetDev</saml:audience>
      </saml:audiencerestriction>
    </saml:conditions>
    <saml:authnstatement authninstant="2013-01-17T17:31:52.474Z" sessionindex="K.m1SisKJoHrf9G2DEbkZUA.dd1">
      <saml:authncontext>
        <saml:authncontextclassref>urn:oasis:names:tc:SAML:2.0:ac:classes:unspecified</saml:authncontextclassref>
      </saml:authncontext>
    </saml:authnstatement>
  </saml:assertion>
</response>

portal-ext:


saml.enabled=true
saml.role=sp
saml.entity.id=IntranetDev
saml.keystore.path=${liferay.home}/data/keystore.jks
saml.keystore.password=password
saml.keystore.type=jks
saml.keystore.credential.password[IntranetDev]=pasword
saml.sp.default.idp.entity.id=myEntityID
saml.metadata.paths=${liferay.home}/data/idpmetadata.xml
saml.sp.sign.authn.request=false
saml.sp.assertion.signature.required=false

and the meta data:

<md:entitydescriptor entityid="myEntityID" cacheduration="PT1440M" id="uygCDLBSmuN3.ap9Pbrujc1Tzay" xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata"><ds:signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
<ds:signedinfo>
<ds:canonicalizationmethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#" />
<ds:signaturemethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1" />
<ds:reference uri="#uygCDLBSmuN3.ap9Pbrujc1Tzay">
<ds:transforms>
<ds:transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature" />
<ds:transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#" />
</ds:transforms>
<ds:digestmethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1" />
<ds:digestvalue>RejpAcLbBXJ0gvW+nlzH5zyYImY=</ds:digestvalue>
</ds:reference>
</ds:signedinfo>
<ds:signaturevalue>
W/1fbM8+7auKK9NesRPP/oofHuqHPqur.......
</ds:signaturevalue>
<ds:keyinfo>
<ds:x509data>
<ds:x509certificate>
MIIDZDCCAkygAwIB......
</ds:x509certificate>
</ds:x509data>
<ds:keyvalue>
<ds:rsakeyvalue>
<ds:modulus>
oX8l1QJ8i8YNucbq2qtGhqFXHPi.....
</ds:modulus>
<ds:exponent>AQAB</ds:exponent>
</ds:rsakeyvalue>
</ds:keyvalue>
</ds:keyinfo>
</ds:signature></md:entitydescriptor>

Mika Koivisto, modificado 11 Anos atrás.

RE: SAML Plugin class cast Exception

Liferay Legend Postagens: 1519 Data de Entrada: 07/08/06 Postagens Recentes

Seems like a classloading issue. Make sure you don't have a jar with that class higher up in your classloader hierarchy.

Jack Chung, modificado 11 Anos atrás.

RE: SAML Plugin class cast Exception

New Member Postagens: 19 Data de Entrada: 30/11/11 Postagens Recentes

just to add to this, a similar problem was seen in websphere 8. The resolution was to change the startup order for the saml-portlet from the default "1" to "2" in the IBM Web Console.

Mika Koivisto, modificado 11 Anos atrás.

RE: SAML Plugin class cast Exception

Liferay Legend Postagens: 1519 Data de Entrada: 07/08/06 Postagens Recentes

Ah WebSphere loads parent first by default and that's wrong. You need to switch the classloading order to parent last for pretty much every single plugin.

Mitesh S Panchal, modificado 10 Anos atrás.

RE: SAML Plugin class cast Exception

New Member Postagens: 20 Data de Entrada: 10/12/08 Postagens Recentes

Hi
I am facing similar exception with tomcat application server.
Strange thing is same things works fine in local machine tomcat but on DEV app server it is failing.
here is the Exception , any help or pointers appreciated....

Caused by: org.opensaml.saml2.metadata.provider.MetadataProviderException: java.lang.ClassCastException: org.apache.xml.security.transforms.implementations.TransformEnvelopedSignature cannot be cast to org.apache.xml.security.transforms.TransformSpi
        at com.liferay.saml.metadata.MetadataManagerImpl.getEntityDescriptor(MetadataManagerImpl.java:119)
        at com.liferay.saml.metadata.MetadataManagerUtil.getEntityDescriptor(MetadataManagerUtil.java:48)
        at com.liferay.saml.profile.BaseProfile.getSamlMessageContext(BaseProfile.java:137)
        at com.liferay.saml.profile.BaseProfile.getSamlMessageContext(BaseProfile.java:190)
        at com.liferay.saml.profile.WebSsoProfileImpl.decodeAuthnRequest(WebSsoProfileImpl.java:272)
        at com.liferay.saml.profile.WebSsoProfileImpl.doProcessAuthnRequest(WebSsoProfileImpl.java:309)
        at com.liferay.saml.profile.WebSsoProfileImpl.processAuthnRequest(WebSsoProfileImpl.java:119)
        ... 86 more
Caused by: java.lang.ClassCastException: org.apache.xml.security.transforms.implementations.TransformEnvelopedSignature cannot be cast to org.apache.xml.security.transforms.TransformSpi
        at org.apache.xml.security.transforms.Transform.getTransformSpi(Unknown Source)
        at org.apache.xml.security.transforms.Transform.<init>(Unknown Source)
        at org.apache.xml.security.transforms.Transform.getInstance(Unknown Source)
        at org.apache.xml.security.transforms.Transform.getInstance(Unknown Source)
        at org.apache.xml.security.transforms.Transforms.addTransform(Unknown Source)
        at org.opensaml.common.impl.SAMLObjectContentReference.createReference(SAMLObjectContentReference.java:140)
        at org.opensaml.xml.signature.impl.SignatureMarshaller.createSignatureElement(SignatureMarshaller.java:115)
        at org.opensaml.xml.signature.impl.SignatureMarshaller.marshall(SignatureMarshaller.java:70)
        at org.opensaml.xml.io.AbstractXMLObjectMarshaller.marshallChildElements(AbstractXMLObjectMarshaller.java:316)
        at org.opensaml.xml.io.AbstractXMLObjectMarshaller.marshallInto(AbstractXMLObjectMarshaller.java:223)
        at org.opensaml.xml.io.AbstractXMLObjectMarshaller.marshall(AbstractXMLObjectMarshaller.java:129)
        at org.opensaml.common.impl.AbstractSAMLObjectMarshaller.marshall(AbstractSAMLObjectMarshaller.java:59)
        at org.opensaml.xml.io.AbstractXMLObjectMarshaller.marshall(AbstractXMLObjectMarshaller.java:85)
        at com.liferay.saml.util.OpenSamlUtil.signObject(OpenSamlUtil.java:494)
        at com.liferay.saml.metadata.MetadataGeneratorUtil.buildIdpEntityDescriptor(MetadataGeneratorUtil.java:62)
        at com.liferay.saml.metadata.MetadataManagerImpl.getEntityDescriptor(MetadataManagerImpl.java:105)
        ... 92 more
</init>

Mitesh S Panchal, modificado 10 Anos atrás.

RE: SAML Plugin class cast Exception

New Member Postagens: 20 Data de Entrada: 10/12/08 Postagens Recentes

Any Update any one ???

Thanks
Mitesh

Mika Koivisto, modificado 10 Anos atrás.

RE: SAML Plugin class cast Exception

Liferay Legend Postagens: 1519 Data de Entrada: 07/08/06 Postagens Recentes

Check your classpath. You probably have xmlsec.jar in global classloader.

Mitesh S Panchal, modificado 10 Anos atrás.

RE: SAML Plugin class cast Exception

New Member Postagens: 20 Data de Entrada: 10/12/08 Postagens Recentes

Thanks

If i deploy saml portlet after server start then SSO works fine.
That worked out for me as a workaround for now

Thanks again!!
Mitesh

Aldo De Vleeschauwer, modificado 10 Anos atrás.

RE: SAML Plugin class cast Exception

Junior Member Postagens: 35 Data de Entrada: 09/03/11 Postagens Recentes

Same issue here. We're using JBoss 7.1.1.

I was playing with the "jboss-deployment-structure.xml" file, trying to exclude some modules that might push xmlsec.jar and doing so I was redeploying the saml-portlet plugin so the issue seemed solved.

Turns out it was, as Mitesh stated, the redeploy that solved it.

Unfortunately this is not a workaround for us.

Aldo De Vleeschauwer, modificado 10 Anos atrás.

RE: SAML Plugin class cast Exception

Junior Member Postagens: 35 Data de Entrada: 09/03/11 Postagens Recentes

I have found a solution for JBoss 7.1.1.

The class causing the issue is loaded using "Thread.currentThread().getContextClassLoader()".

It turns out that during startup of the JBoss server, the "Thread.currentThread().getContextClassLoader()" does not contain the application classloader but rather a classloader from another JBoss module. So the "jboss-deployment-structure.xml" did not help here, as it only influences the application classloader.

At redeploy it does work as expected, the "Thread.currentThread().getContextClassLoader()" contains the application classloader.

To fix it, I replaced the contextClassLoader in "OpenSamlBootstrap.java", bootstrap():


        ClassLoader contextClassLoader = Thread.currentThread()
                .getContextClassLoader();

        try {
            Thread.currentThread().setContextClassLoader(
                    OpenSamlBootstrap.class.getClassLoader());

            initializeXMLSecurity();

            initializeXMLTooling(_xmlToolingConfigs);

            initializeArtifactBuilderFactories();

            initializeGlobalSecurityConfiguration();

            initializeParserPool();

            initializeESAPI();

        } finally {
            Thread.currentThread().setContextClassLoader(contextClassLoader);
        }

Now it works as expected.

Mika Koivisto, modificado 10 Anos atrás.

RE: SAML Plugin class cast Exception

Liferay Legend Postagens: 1519 Data de Entrada: 07/08/06 Postagens Recentes

Thanks Aldo for tracking down the issue. Can you create a ticket for this? I'll our QA reproduce the issue so that we can get the fix in.

Mika Koivisto, modificado 10 Anos atrás.

RE: SAML Plugin class cast Exception

Liferay Legend Postagens: 1519 Data de Entrada: 07/08/06 Postagens Recentes

Looks like we already knew about that issue but it got closed as no longer reproducible because it wasn't something that could be consistently reproduced. I reopened it and will use the same workaround we already use for Velocity initialization this is basically the same thing Aldo came up with. The issue is LPS-31484