Uncaught server error: org.keycloak.broker.provider.IdentityBrokerException: Could not process response from SAML identity provider
Internal server error caused by Certificate Exception

Error Log:
2018-08-13 17:40:46,230 DEBUG [org.keycloak.saml.SAMLRequestParser] (default task-6) <samlp:Response ID="_f0479a8c-d1ab-4316-8e62-8e3444e1c5b9" Version="2.0" IssueInstant="2018-08-13T17:40:46.061Z" Destination="https://testinsight.wmp.accentureanalytics.com/auth/realms/springboot-quickstart/broker/WMP-DDI-ES-Test/endpoint" Consent="urn:oasis:names:tc:SAML:2.0:consent:unspecified" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><Issuer xmlns="urn:oasis:names:tc:SAML:2.0:assertion">http://adfs.west-midlands.police.uk/adfs/services/trust</Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><EncryptedAssertion xmlns="urn:oasis:names:tc:SAML:2.0:assertion"><xenc:EncryptedData Type="http://www.w3.org/2001/04/xmlenc#Element" xmlns:xenc="http://www.w3.org/2001/04/xmlenc#"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes256-cbc" /><KeyInfo xmlns="http://www.w3.org/2000/09/xmldsig#"><e:EncryptedKey xmlns:e="http://www.w3.org/2001/04/xmlenc#"><e:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-oaep-mgf1p"><DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1" /></e:EncryptionMethod><KeyInfo><ds:X509Data xmlns:ds="http://www.w3.org/2000/09/xmldsig#"><ds:X509IssuerSerial><ds:X509IssuerName>CN=Entrust Certification Authority - L1K, OU="(c) 2012 Entrust, Inc. - for authorized use only", OU=See www.entrust.net/legal-terms, O="Entrust, Inc.", C=US</ds:X509IssuerName><ds:X509SerialNumber>2218609779607702275169545509293532184</ds:X509SerialNumber></ds:X509IssuerSerial></ds:X509Data></KeyInfo><e:CipherData><e:CipherValue>YLqfKAeqqLmVz7+1IDHRUR24SSVt72x1NpNj3zz89B4lsWCZPGKOl4cPcqD44THlGsLKObWQA6m34VHS0+Jj0zo9acRtS1K7br57GprLPyClT9KiU/jYTHhES6M8FIKyhEP8fGzUSHj5rNWnBn8C9je+IKnVqkybcumgvci9pMqKm7y8u+fL9OWwKMShl3J6PSKBOYP8NAyUk/1R0pMgU5G9dr9pS0dcXtS5EgKOxtIKJO9DZ9DxQ9rQ8CsSjyOB03U/JfL6pLhNhw6nrdh+Y/aAHiNExaXrbqn44pLor7pfE88kXokWTxtjA3HlHa1LR1n/nTMfS1+qg2JBztFc4g==</e:CipherValue></e:CipherData></e:EncryptedKey></KeyInfo><xenc:CipherData><xenc:CipherValue>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</xenc:CipherValue></xenc:CipherData></xenc:EncryptedData></EncryptedAssertion></samlp:Response>
2018-08-13 17:40:46,242 ERROR [org.keycloak.services.error.KeycloakErrorHandler] (default task-6) Uncaught server error: org.keycloak.broker.provider.IdentityBrokerException: Could not process response from SAML identity provider.
at org.keycloak.broker.saml.SAMLEndpoint$Binding.handleLoginResponse(SAMLEndpoint.java:444)
at org.keycloak.broker.saml.SAMLEndpoint$Binding.handleSamlResponse(SAMLEndpoint.java:479)
at org.keycloak.broker.saml.SAMLEndpoint$Binding.execute(SAMLEndpoint.java:237)
at org.keycloak.broker.saml.SAMLEndpoint.postBinding(SAMLEndpoint.java:157)
at sun.reflect.GeneratedMethodAccessor864.invoke(Unknown Source)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
at java.lang.reflect.Method.invoke(Method.java:498)
at org.jboss.resteasy.core.MethodInjectorImpl.invoke(MethodInjectorImpl.java:140)
at org.jboss.resteasy.core.ResourceMethodInvoker.invokeOnTarget(ResourceMethodInvoker.java:295)
at org.jboss.resteasy.core.ResourceMethodInvoker.invoke(ResourceMethodInvoker.java:249)
at org.jboss.resteasy.core.ResourceLocatorInvoker.invokeOnTargetObject(ResourceLocatorInvoker.java:138)
at org.jboss.resteasy.core.ResourceLocatorInvoker.invoke(ResourceLocatorInvoker.java:107)
at org.jboss.resteasy.core.ResourceLocatorInvoker.invokeOnTargetObject(ResourceLocatorInvoker.java:133)
at org.jboss.resteasy.core.ResourceLocatorInvoker.invoke(ResourceLocatorInvoker.java:101)
at org.jboss.resteasy.core.SynchronousDispatcher.invoke(SynchronousDispatcher.java:406)
at org.jboss.resteasy.core.SynchronousDispatcher.invoke(SynchronousDispatcher.java:213)
at org.jboss.resteasy.plugins.server.servlet.ServletContainerDispatcher.service(ServletContainerDispatcher.java:228)
at org.jboss.resteasy.plugins.server.servlet.HttpServletDispatcher.service(HttpServletDispatcher.java:56)
at org.jboss.resteasy.plugins.server.servlet.HttpServletDispatcher.service(HttpServletDispatcher.java:51)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:790)
at io.undertow.servlet.handlers.ServletHandler.handleRequest(ServletHandler.java:85)
at io.undertow.servlet.handlers.FilterHandler$FilterChainImpl.doFilter(FilterHandler.java:129)
at org.keycloak.services.filters.KeycloakSessionServletFilter.doFilter(KeycloakSessionServletFilter.java:90)
at io.undertow.servlet.core.ManagedFilter.doFilter(ManagedFilter.java:61)
at io.undertow.servlet.handlers.FilterHandler$FilterChainImpl.doFilter(FilterHandler.java:131)
at io.undertow.servlet.handlers.FilterHandler.handleRequest(FilterHandler.java:84)
at io.undertow.servlet.handlers.security.ServletSecurityRoleHandler.handleRequest(ServletSecurityRoleHandler.java:62)
at io.undertow.servlet.handlers.ServletDispatchingHandler.handleRequest(ServletDispatchingHandler.java:36)
at org.wildfly.extension.undertow.security.SecurityContextAssociationHandler.handleRequest(SecurityContextAssociationHandler.java:78)
at io.undertow.server.handlers.PredicateHandler.handleRequest(PredicateHandler.java:43)
at io.undertow.servlet.handlers.security.SSLInformationAssociationHandler.handleRequest(SSLInformationAssociationHandler.java:131)
at io.undertow.servlet.handlers.security.ServletAuthenticationCallHandler.handleRequest(ServletAuthenticationCallHandler.java:57)
at io.undertow.server.handlers.PredicateHandler.handleRequest(PredicateHandler.java:43)
at io.undertow.security.handlers.AbstractConfidentialityHandler.handleRequest(AbstractConfidentialityHandler.java:46)
at io.undertow.servlet.handlers.security.ServletConfidentialityConstraintHandler.handleRequest(ServletConfidentialityConstraintHandler.java:64)
at io.undertow.security.handlers.AuthenticationMechanismsHandler.handleRequest(AuthenticationMechanismsHandler.java:60)
at io.undertow.servlet.handlers.security.CachedAuthenticatedSessionHandler.handleRequest(CachedAuthenticatedSessionHandler.java:77)
at io.undertow.security.handlers.NotificationReceiverHandler.handleRequest(NotificationReceiverHandler.java:50)
at io.undertow.security.handlers.AbstractSecurityContextAssociationHandler.handleRequest(AbstractSecurityContextAssociationHandler.java:43)
at io.undertow.server.handlers.PredicateHandler.handleRequest(PredicateHandler.java:43)
at org.wildfly.extension.undertow.security.jacc.JACCContextIdHandler.handleRequest(JACCContextIdHandler.java:61)
at io.undertow.server.handlers.PredicateHandler.handleRequest(PredicateHandler.java:43)
at org.wildfly.extension.undertow.deployment.GlobalRequestControllerHandler.handleRequest(GlobalRequestControllerHandler.java:68)
at io.undertow.server.handlers.PredicateHandler.handleRequest(PredicateHandler.java:43)
at io.undertow.servlet.handlers.ServletInitialHandler.handleFirstRequest(ServletInitialHandler.java:292)
at io.undertow.servlet.handlers.ServletInitialHandler.access$100(ServletInitialHandler.java:81)
at io.undertow.servlet.handlers.ServletInitialHandler$2.call(ServletInitialHandler.java:138)
at io.undertow.servlet.handlers.ServletInitialHandler$2.call(ServletInitialHandler.java:135)
at io.undertow.servlet.core.ServletRequestContextThreadSetupAction$1.call(ServletRequestContextThreadSetupAction.java:48)
at io.undertow.servlet.core.ContextClassLoaderSetupAction$1.call(ContextClassLoaderSetupAction.java:43)
at org.wildfly.extension.undertow.security.SecurityContextThreadSetupAction.lambda$create$0(SecurityContextThreadSetupAction.java:105)
at org.wildfly.extension.undertow.deployment.UndertowDeploymentInfoService$UndertowThreadSetupAction.lambda$create$0(UndertowDeploymentInfoService.java:1508)
at org.wildfly.extension.undertow.deployment.UndertowDeploymentInfoService$UndertowThreadSetupAction.lambda$create$0(UndertowDeploymentInfoService.java:1508)
at org.wildfly.extension.undertow.deployment.UndertowDeploymentInfoService$UndertowThreadSetupAction.lambda$create$0(UndertowDeploymentInfoService.java:1508)
at org.wildfly.extension.undertow.deployment.UndertowDeploymentInfoService$UndertowThreadSetupAction.lambda$create$0(UndertowDeploymentInfoService.java:1508)
at io.undertow.servlet.handlers.ServletInitialHandler.dispatchRequest(ServletInitialHandler.java:272)
at io.undertow.servlet.handlers.ServletInitialHandler.access$000(ServletInitialHandler.java:81)
at io.undertow.servlet.handlers.ServletInitialHandler$1.handleRequest(ServletInitialHandler.java:104)
at io.undertow.server.Connectors.executeRootHandler(Connectors.java:326)
at io.undertow.server.HttpServerExchange$1.run(HttpServerExchange.java:812)
at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1149)
at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:624)
at java.lang.Thread.run(Thread.java:748)
Caused by: java.lang.RuntimeException: org.keycloak.saml.common.exceptions.ProcessingException: PL00102: Processing Exception:
at org.keycloak.broker.saml.SAMLEndpoint$Binding.getIDPKeyLocator(SAMLEndpoint.java:225)
at org.keycloak.broker.saml.SAMLEndpoint$Binding.handleLoginResponse(SAMLEndpoint.java:378)
... 62 more
Caused by: org.keycloak.saml.common.exceptions.ProcessingException: PL00102: Processing Exception:
at org.keycloak.saml.common.DefaultPicketLinkLogger.processingError(DefaultPicketLinkLogger.java:164)
at org.keycloak.saml.processing.core.util.XMLSignatureUtil.getX509CertificateFromKeyInfoString(XMLSignatureUtil.java:591)
at org.keycloak.broker.saml.SAMLEndpoint$Binding.getIDPKeyLocator(SAMLEndpoint.java:222)
... 63 more
Caused by: java.security.cert.CertificateException: Unable to initialize, java.io.IOException: Short read of DER length
at sun.security.x509.X509CertImpl.<init>(X509CertImpl.java:198)
at sun.security.provider.X509Factory.engineGenerateCertificate(X509Factory.java:102)
at java.security.cert.CertificateFactory.generateCertificate(CertificateFactory.java:339)
at org.keycloak.saml.processing.core.util.XMLSignatureUtil.getX509CertificateFromKeyInfoString(XMLSignatureUtil.java:588)
... 64 more
Caused by: java.io.IOException: Short read of DER length
at sun.security.util.DerInputStream.getLength(DerInputStream.java:582)
at sun.security.util.DerValue.<init>(DerValue.java:258)
at sun.security.util.DerInputStream.getDerValue(DerInputStream.java:451)
at sun.security.x509.X509CertImpl.parse(X509CertImpl.java:1784)
at sun.security.x509.X509CertImpl.<init>(X509CertImpl.java:195)
... 67 more