Re: [keycloak-user] SAML parsing error

Monday, 24 April 2017

without seeing the XML it is impossible for me to help you.  I believe 
you need to go to character 9341 to see what Keycloak doesn't understand 
about the assertion.  Your IDP may be sending an XML type that Keycloak 
does not support yet.

On 4/24/17 10:12 AM, Anders KK wrote:
...
 Hi,

 We have setup Keycloak as an identity broker with a SAML IdP. Keycloak
 recieves a SAML response from the IdP and we can decrypt this response by
 hand and it looks like we expect.

 When the browser hits our SAML endpoint
 (https://[domain]/auth/realms/[realm]/[client]/[IdP alias]/endpoint) we get
 an exception:
 org.keycloak.broker.provider.IdentityBrokerException: Could not process
 response from SAML identity provider.

 The log shows this error: PL00062: Parser : Unknown
 tag:AuthnStatement::location=[row,col {unknown-source}]: [1,9341]

 It seems that Keycloak do not know the tag AuthnStatement even though this
 is part of the SAML 2.0 standard?
 Are we missing something here?

 Kind regards,
 Ulrik and Anders

 --
 View this message in context:
http://keycloak-user.88327.x6.nabble.com/SAML-parsing-error-tp3667.html
 Sent from the keycloak-user mailing list archive at Nabble.com.
 _______________________________________________
 keycloak-user mailing list
 keycloak-user(a)lists.jboss.org
 https://lists.jboss.org/mailman/listinfo/keycloak-user 

2025

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

Re: [keycloak-user] SAML parsing error