Hi, 

    I re-check the issue :

1)  For version 1.5,  the metadata can be imported  with a popup :    Success! The IDP metadata has been loaded from file.
     but when you presses the save button,  an error message is shown : Error! Missing or invalid field(s). Please verify the fields in red.

2)  I install 1.6.0, now it is fine. So it seem a bug for 1.5

3)  For 1.6.0, when I turn on Validate Signature ,the field  Validating X509 Certificate   is shown and filed.  This seems good than 1.5 ,which 
     shows nothing.  

    But for 1.6, turn on Validate Signature, there is nothing changed in the export tab. This is expected ?


 

   ,  



----- Forwarded Message -----
From: Mai Zi <ornot2008@yahoo.com>
To: "keycloak-user@lists.jboss.org" <keycloak-user@lists.jboss.org>
Sent: Thursday, October 29, 2015 7:09 AM
Subject: Fw: Failed to import IDP meta data into keycloak

Hi, B.B,

We are using keycloak  for brokering.


Thanks a lot.





----- Forwarded Message -----
From: Mai Zi <ornot2008@yahoo.com>
To: Keycloak-user <keycloak-user@lists.jboss.org>
Sent: Wednesday, October 28, 2015 9:01 PM
Subject: Fw: Failed to import IDP meta data into keycloak

Can anybody help on this ?

Thank you very much.



----- Forwarded Message -----
From: Mai Zi <ornot2008@yahoo.com>
To: "keycloak-user@lists.jboss.org" <keycloak-user@lists.jboss.org>
Sent: Monday, October 26, 2015 4:16 PM
Subject: Failed to import IDP meta data into keycloak

Hi, there,

1) We failed to import  idp meta data into keycloak (see attachment for the sample xml).  Pls help taka a look what's going on. 

2) Suppose we can not import the metadata , based on the sample xml given in the attachment, which fields should we fill? 
    


3)  In the user guide, there is one sentence:  "Once you create a SAML provider, there is an EXPORT button that appears when viewing that provider. Clicking this button will export a SAML entity descriptor which you can use to" 

     Here "That provider" means the keycloak as a SP provider ?  From the demo exported data , it seems so.  Am I right?  

     To work with the 3rd party IDP, we should provide the exported metadata to idp, shouldn't we?



I am not familiar with saml concept so any help will be greatly appreciated.


Mai