Hi,
I re-check the issue :
1) For version 1.5, the metadata can be imported with a popup : Success! The IDP
metadata has been loaded from file. but when you presses the save button, an error
message is shown : Error! Missing or invalid field(s). Please verify the fields in red.
2) I install 1.6.0, now it is fine. So it seem a bug for 1.5
3) For 1.6.0, when I turn on Validate Signature ,the field Validating X509 Certificate
is shown and filed. This seems good than 1.5 ,which shows nothing.
But for 1.6, turn on Validate Signature, there is nothing changed in the export
tab. This is expected ?
,
----- Forwarded Message -----
From: Mai Zi <ornot2008(a)yahoo.com>
To: "keycloak-user(a)lists.jboss.org" <keycloak-user(a)lists.jboss.org>
Sent: Thursday, October 29, 2015 7:09 AM
Subject: Fw: Failed to import IDP meta data into keycloak
Hi, B.B,
We are using keycloak for brokering.
Thanks a lot.
----- Forwarded Message -----
From: Mai Zi <ornot2008(a)yahoo.com>
To: Keycloak-user <keycloak-user(a)lists.jboss.org>
Sent: Wednesday, October 28, 2015 9:01 PM
Subject: Fw: Failed to import IDP meta data into keycloak
Can anybody help on this ?
Thank you very much.
----- Forwarded Message -----
From: Mai Zi <ornot2008(a)yahoo.com>
To: "keycloak-user(a)lists.jboss.org" <keycloak-user(a)lists.jboss.org>
Sent: Monday, October 26, 2015 4:16 PM
Subject: Failed to import IDP meta data into keycloak
Hi, there,
1) We failed to import idp meta data into keycloak (see attachment for the sample xml).
Pls help taka a look what's going on.
2) Suppose we can not import the metadata , based on the sample xml given in the
attachment, which fields should we fill?
3) In the user guide, there is one sentence: "Once you create a SAML provider,
there is an EXPORT button that appears when viewing that provider. Clicking this button
will export a SAML entity descriptor which you can use to"
Here "That provider" means the keycloak as a SP provider ? From the demo
exported data , it seems so. Am I right?
To work with the 3rd party IDP, we should provide the exported metadata to idp,
shouldn't we?
I am not familiar with saml concept so any help will be greatly appreciated.
Mai