[keycloak-user] SAML parsing error
Bill Burke
bburke at redhat.com
Mon Apr 24 18:50:22 EDT 2017
without seeing the XML it is impossible for me to help you. I believe
you need to go to character 9341 to see what Keycloak doesn't understand
about the assertion. Your IDP may be sending an XML type that Keycloak
does not support yet.
On 4/24/17 10:12 AM, Anders KK wrote:
> Hi,
>
> We have setup Keycloak as an identity broker with a SAML IdP. Keycloak
> recieves a SAML response from the IdP and we can decrypt this response by
> hand and it looks like we expect.
>
> When the browser hits our SAML endpoint
> (https://[domain]/auth/realms/[realm]/[client]/[IdP alias]/endpoint) we get
> an exception:
> org.keycloak.broker.provider.IdentityBrokerException: Could not process
> response from SAML identity provider.
>
> The log shows this error: PL00062: Parser : Unknown
> tag:AuthnStatement::location=[row,col {unknown-source}]: [1,9341]
>
> It seems that Keycloak do not know the tag AuthnStatement even though this
> is part of the SAML 2.0 standard?
> Are we missing something here?
>
> Kind regards,
> Ulrik and Anders
>
>
>
>
> --
> View this message in context: http://keycloak-user.88327.x6.nabble.com/SAML-parsing-error-tp3667.html
> Sent from the keycloak-user mailing list archive at Nabble.com.
> _______________________________________________
> keycloak-user mailing list
> keycloak-user at lists.jboss.org
> https://lists.jboss.org/mailman/listinfo/keycloak-user
More information about the keycloak-user
mailing list