Uploaded image for project: 'Identity Provider'
  1. Identity Provider
  2. IDP-847

Setting <Audience> per relaying party trigers "Uncaught runtime exception"

    XMLWordPrintable

    Details

    • Type: Bug
    • Status: Closed
    • Priority: Major
    • Resolution: Fixed
    • Affects Version/s: 3.1.2
    • Fix Version/s: 3.2.0
    • Component/s: Relying Party
    • Labels:
      None
    • Environment:

      CentOS Linux 7.1.1503
      Jetty 9.3.3.v20150827
      Java(TM) SE Runtime Environment (build 1.8.0_60-b27)
      Java HotSpot(TM) 64-Bit Server VM (build 25.60-b23, mixed mode)

      Description

      This is the configuration we have in relaying-praty.xml

      {{<bean parent="RelyingPartyByName" c:relyingPartyIds="https://.........">
      <property name="profileConfigurations">
      <list>
      <bean parent="SAML2.SSO" p:signAssertions="true" p:signResponses="false"
      p:nameIDFormatPrecedence="urn:oasis:names:tc:SAML:1.1:nameid-format:X509SubjectName">
      <property name="additionalAudienceForAssertion">
      <set>
      <value>http://.......</value>
      </set>
      </property>
      </bean>
      </list>
      </property>
      </bean>}}

      This is the error we receive

      {{ERROR [net.shibboleth.idp.saml.profile:-2] - Uncaught runtime exception
      java.lang.ClassCastException: com.google.common.collect.SingletonImmutableSet cannot be cast to java.lang.String
      at org.opensaml.saml.common.profile.impl.AddAudienceRestrictionToAssertions.addAudienceRestriction(AddAudienceRestrictionToAssertions.java:237)}}

      This error is triggered in both configuration styles - new, IdPv3.x and the old one, IdPv2.x

        Attachments

          Activity

            People

            Assignee:
            cantor.2@osu.edu Scott Cantor
            Reporter:
            yy27@nyu.edu Yavor Yanakiev
            Watchers:
            3 Start watching this issue

              Dates

              Created:
              Updated:
              Resolved:

                Time Tracking

                Estimated:
                Original Estimate - Not Specified
                Not Specified
                Remaining:
                Remaining Estimate - 0 minutes
                0m
                Logged:
                Time Spent - 1 hour, 30 minutes
                1h 30m