Uploaded image for project: 'Identity Provider'
  1. Identity Provider
  2. IDP-1022

ClientStorageService error when issuing delegated assertion

    XMLWordPrintable

    Details

    • Type: Bug
    • Status: Closed
    • Priority: Blocker
    • Resolution: Fixed
    • Affects Version/s: 3.2.1
    • Fix Version/s: 3.3.0
    • Component/s: SAML2
    • Labels:
      None
    • Operating System:
      Multiple

      Description

      As discussed in the users list:

      http://marc.info/?l=shibboleth-users&m=147087384910813&w=2

      When issuing a delegation assertion (Liberty SSOS profile), the following error is logged twice in succession:

      ERROR [org.opensaml.storage.impl.client.ClientStorageService:451] -
      StorageService shibboleth.ClientSessionStorageService: No storage
      object found in session

      Presumably the error occurs because the client (presenter) does not support the session cookie, but the client-side storage does not seem useful in the delegation case, and should be skipped.

      Attaching an edited trace log (with DEBUG level for opensaml, net.shibboleth.idp.saml.saml2.profile.delegation, and net.shibboleth.idp.saml.nameid).

        Attachments

          Issue Links

            Activity

              People

              Assignee:
              putmanb@shibboleth.net Brent Putman
              Reporter:
              rbasch@mit.edu Robert A Basch
              Watchers:
              2 Start watching this issue

                Dates

                Created:
                Updated:
                Resolved:

                  Time Tracking

                  Estimated:
                  Original Estimate - Not Specified
                  Not Specified
                  Remaining:
                  Remaining Estimate - 0 minutes
                  0m
                  Logged:
                  Time Spent - 15 minutes
                  15m